Resources, U.S. Laws & Regulations

Reporting from the 2023 IAPP Global Privacy Summit

Privacy professionals from across the world gathered at the IAPP Global Privacy Summit in Washington DC this week, providing a forum to share ideas and learn about the latest developments in the field. Attendance was excellent, boasting a diverse group of experts gathered to learn about hot topics, the necessity for automation, and state-of-the-art privacy technology. Truyo and Egnyte interacted with leaders of organizations to discuss all things privacy including new regulations, the advantage of an automated approach to privacy, and how Truyo and Egnyte’s partnership is giving organizations a top-to-bottom solution. And we handed out a lot of skittles! Let’s dive into the summit’s takeaways.

IAPP Summit Hot Topics

Artificial Intelligence

In keeping with what’s been monopolizing privacy coverage, Artificial Intelligence was all the rage. Nina Schick’s speech pointed out that ChatGPT was the fastest growing app of all time, hitting one million users in 5 days, blowing Twitter’s 2 year and Facebook’s months-long efforts to hit the same milestone. In only two months ChatGPT boasted over one hundred million users. Schick’s address emphasized how critical a time this is for all of us, and privacy should be in the forefront when navigating this new world.

A member of the European Parliament and co-Rapporteur of the EU’s proposed AI Act legislation emphasized the need for AI governance. Italy banned ChatGPT as investigations seek to uncover the app’s data collection practices and Canada followed suit by announcing their own investigations into the app and OpenAI. Further discussions highlighted AI’s impact on diversity, with women and minorities experiencing discrimination in the AI realm.

Enforcement

Enforcement was another hot topic of discussion with speculations on how it will ramp up now that CPRA is in effect and Colorado is shortly behind. Important discussions around the sale of data brought to light important considerations. Will enforcement be focused on big tech? Will enforcement entities employ tech of their own to monitor compliance? Is enforcement really centered around consumers’ privacy? Will states cooperate? We got some answers, but there’s still a lot of uncertainty.

As expected, federal privacy discussions were on the agenda, but California’s privacy laws were the main topic of discussion. After the initial set of California Privacy Rights Act regulations were completed just days prior to the summit, the focus shifted. According to CPPA Executive Director Ashkan Soltani, the regulations updated earlier requirements laid out under the California Consumer Privacy Act. Soltani underscored the need for GPC compliance, cooperative enforcement between the agency and California AG, and how federal preemption would be unfavorable. Much work is yet to be done to address lingering ambiguity and new enforcement issues since the 30-day right to cure sunset on January 1st and cure notices are now at the CPPA’s discretion.

Data Mapping

Attendees, along with the speakers, also focused on data mapping and why it’s the key to compliance moving forward. Accurate knowledge of data collected will be the basis for all successful privacy departments as new requirements continue to arise.

TikTok

Like Artificial Intelligence, TikTok has had the privacy world abuzz. The app joins ChatGPT on the list of technologies that are gathering data on its users while shirking regulations and lacking transparency. The issue of both AI and TikTok stresses the need for a federal privacy law that can encompass all emerging technologies that put consumers at risk.

Truyo’s Key Takeaways from This Year’s IAPP Global Summit

  • Privacy is becoming increasingly important as businesses collect and use more data.
  • The global privacy landscape is changing rapidly, with new laws and regulations being enacted around the world.
  • Artificial intelligence and other new technologies are creating novel challenges for privacy.
  • Privacy professionals need to stay up to date on the latest developments in order to protect the privacy of their customers and clients.
  • Enforcement is going to evolve this year and will dictate how organizations seek to meet requirements set forth by privacy legislation.

Author

Dan Clarke
Dan Clarke
President, Truyo
April 6, 2023

Let Truyo Be Your Guide Towards Safer AI Adoption

Connect with us today