惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

Hugging Face - Blog
Hugging Face - Blog
Jina AI
Jina AI
宝玉的分享
宝玉的分享
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
人人都是产品经理
人人都是产品经理
博客园 - 聂微东
OSCHINA 社区最新新闻
OSCHINA 社区最新新闻
J
Java Code Geeks
博客园 - 【当耐特】
小众软件
小众软件
博客园 - Franky
S
SegmentFault 最新的问题
WordPress大学
WordPress大学
雷峰网
雷峰网
The Cloudflare Blog
酷 壳 – CoolShell
酷 壳 – CoolShell
量子位
Last Week in AI
Last Week in AI
博客园_首页
月光博客
月光博客
IT之家
IT之家
阮一峰的网络日志
阮一峰的网络日志
Webroot Blog
Webroot Blog
Stack Overflow Blog
Stack Overflow Blog
腾讯CDC
云风的 BLOG
云风的 BLOG
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
W
WeLiveSecurity
Recent Commits to openclaw:main
Recent Commits to openclaw:main
D
Docker
The Last Watchdog
The Last Watchdog
有赞技术团队
有赞技术团队
Hacker News - Newest:
Hacker News - Newest: "LLM"
D
DataBreaches.Net
S
Security @ Cisco Blogs
Blog — PlanetScale
Blog — PlanetScale
GbyAI
GbyAI
TaoSecurity Blog
TaoSecurity Blog
S
Security Affairs
Y
Y Combinator Blog
O
OpenAI News
罗磊的独立博客
MongoDB | Blog
MongoDB | Blog
钛媒体:引领未来商业与生活新知
钛媒体:引领未来商业与生活新知
Forbes - Security
Forbes - Security
P
Palo Alto Networks Blog
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
K
Kaspersky official blog
Cloudbric
Cloudbric

Privacy Ref

Welome to Privacy Ref Academy CIPP/US Training at The Florida Bar Annual Meeting Certificate in Data Privacy and Protection Univ. of Technology, Jamaica, and Privacy Ref launch Data Privacy Training Initiative The need to verify Policy Compliance Privacy Ref named one of the Best Data Privacy Service Providers in the U.S. Massachusetts bill follows latest Privacy Law standards Personal Privacy Tips Bring AI into the Privacy Program in 2025
Thoughts after the IAPP GPS
Bob Siegel · 2025-05-12 · via Privacy Ref

The 2025 IAPP Global Privacy Summit confirmed what many of us in the industry already recognize: privacy has evolved from a compliance function into a strategic business priority. As someone who had the privilege of teaching Privacy Program Management for the CIPM (Certified Information Privacy Manager) designation at Summit, I was struck by how many professionals are grappling with the same challenge: how to operationalize privacy in a way that is scalable, efficient, and aligned with business growth.

Artificial intelligence dominated the conversation at this year’s Summit. Trevor Hughes, president and CEO of the IAPP, emphasized that for privacy professionals this is the time of the “&”. Organizations are depending upon their privacy team to take on a myriad of governance challenges. For example, with the EU AI Act and a wave of state-level regulation emerging in the U.S., organizations are scrambling to govern AI systems in line with privacy principles. Falling on the shoulders of privacy professionals, this is giving us the charter of Privacy & AI governance. The challenge? Most of us lack the tools to assess AI risks like bias, opacity, and data provenance.

Privacy and AI are only two areas of data usage where some level of governance is required. Many larger organizations have Data Governance teams that take a holistic view of their information use including legal compliance. I suggest that the same talents that make privacy professionals attractive for governing organizations’ AI efforts may also be applied to data governance in general.

Think of data governance as a framework of rules, policies, standards, processes, and controls that dictate how an organization manages its data assets throughout their lifecycle. Key principles underpinning data governance include accountability, transparency, data quality, data security, stewardship, and business alignment. Data governance’s primary goals are to ensure data is accurate, consistent, secure, available, and usable for informed decision-making, operational efficiency, regulatory compliance, and risk management.

This may seem as a parallel to the focus to that of a privacy program, however the scope of a privacy program is limited to personal information where data governance looks at all information assets.

Just as with AI governance, expanding into general data governance will require privacy professionals to take broader view of information systems. It will also require privacy professionals to gain some new perspectives and insight into new practices.

Notwithstanding the above, the basic requirements of establishing or validating a privacy program remain a challenge for some organizations. Teaching the CIPM class this year gave me the opportunity to connect directly with professionals working hard to build programs that are both compliant and resilient. What I heard again and again is that organizations need help translating privacy principles into operational practice. Advisory services provided by third parties are no longer a “nice to have” they are an essential part of how privacy gets done. Addressing privacy obligations through a comprehensive program is a great first step to preparing your organization for a more encompassing data governance program.

In a world where data is power, privacy and data governance are foundational need and done right, it’s also a competitive advantage.