In this episode Jacob speaks with privacy attorney Donata Stroink-Skillrud. Donata is the chair of the American Bar Association’s ePrivacy committee, and has an excellent understanding of privacy laws in the US and the EU.

She shares the impact of US and EU privacy laws on businesses, how they can plan to comply, and much more!

Here are some key topics we discussed:

• The importance of privacy laws
• Differences between EU and US approaches to privacy
• The impact of GDPR and why many consider it to be the gold standard in privacy laws
• Current and emerging state-level privacy laws in the US
• Implications of privacy laws for small businesses
• The importance of only collecting the information you need
• The status of the US's federal privacy law and how it compares to the GDPR
• How GRC compliance frameworks like NIST’s Privacy Framework and ISO 27001 can help comply

Donata's website: https://termageddon.com

Follow Donata on LinkedIn: https://www.linkedin.com/in/donata-stroink-skillrud/

-----------

Governance, Risk, and Compliance Academy (GRC) Academy is a training and research platform!

Online GRC Training: https://grcacademy.io/courses/?utm_source=podcast&utm_medium=s1-e7&utm_campaign=courses

Need a FedRAMP authorized Password Manager?

Start a free 14-day trial of Keeper: https://grcacademy.io/ref/keeper/b2b-trial/

See the CMMC controls that Keeper meets: https://grcacademy.io/ref/keeper/cmmc-controls-sheet/