Data Protection Leader Magazine | January 2024
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Data Protection Leader is the bi-monthly magazine from OneTrust DataGuidance featuring interviews with some of privacy’s top voices as well as expert insight and analysis on trending topics in data protection, cybersecurity, and beyond.
In this issue, Dr. Carlo Piltz and Alexander Weiß from Piltz Legal discuss the EU AI Act and what organizations need to be considering. We also feature an article looking at data protection employee engagement program by Tim Clements, Business Owner of Purpose and Means, while Lisa Fitzgerald and Keely O'Dowd from Lander & Rogers profile privacy law in Australia. This issue also features interviews with Jordan Crenshaw, Senior Vice President at the U.S. Chamber of Commerce's Technology Engagement Center, as well as with Natalija Bitiukova, Global DPO at IKEA.
Privacy governance challenges for 2024
To kick off 2024, Eduardo Ustaran, Partner at Hogan Lovells, discusses some of the biggest challenges that privacy professionals will face in the year ahead.
“2024 is set to be a year of significant change. Geopolitical change. Technological change. Social change. While change can, of course, be an opportunity to do things better and that should be our constant aspiration, the changes ahead will bring considerable challenges - many outside our control and some within our control. Those of us working in data protection, privacy and cybersecurity will find ourselves at the forefront of this process and face some real tests of knowledge and good judgment.”
The AI Act is here - what now?
Dr. Carlo Piltz and Alexander Weiß from Piltz Legal, explore the next steps for the EU AI Act now that trilogue discussions have concluded.
“The AI Act will in some cases have a significant impact on the design of digital business models, the drafting of contracts, (e.g., for SaaS services with AI elements) and information obligations. In particular, companies must check whether the systems used can be considered as AI and therefore fall under the AI Act. Another decisive factor is whether the company's own AI systems are to be classified as high-risk AI, as the most comprehensive obligations apply in this regard.”
Want to raise the bar? Don't trivialize employee engagement
Tim Clements, Business Owner of Purpose and Means, shares his insights and experiences in building a data protection employee engagement program.
“Data protection is all about people - the employees in your company. The people who you as a Data Protection Leader need to rely on to live up to principles and expectations which are articulated in your data protection policies. This duality requires greater focus than many companies currently provide and by investigating time and effort, the compliance bar can be raised.”
5 Minutes With...
In this issue, we speak with Jordan Crenshaw, Senior Vice President at the U.S. Chamber of Commerce's Technology Engagement Center, about his role, inspirations, and who would play him in a film about his life.
“No day is ever the same. This is both the best and most challenging part of the job. One day I have the opportunity to testify in front of Congress on a hot issue like AI, the next, I am somewhere on the other side of the country with the owner of a coffee shop talking with him about how digital advertising saved his business during COVID. At the same time, news cycles change, businesses have fluid needs, and policymakers may reprioritize issues that require our engagement.”
