Tag Archives: Data Privacy

Please Don’t Copy and Paste: Getting Privacy Policies Right

May 22, 2025Privacy AbbreviatedData Privacy, Privacy AbbreviatedBBB National Programs

Podcast (privacyabbreviated): Play in new window | Download (Duration: 50:10 — 69.2MB) | Embed

Subscribe: Apple Podcasts | Spotify | RSS

Whether your company has 5 employees or 500, if you operate online, you’re collecting user data—and that means you must have a privacy policy. But having a privacy policy isn’t just a legal requirement; it’s a powerful statement of your company’s ethics and values. Done right, it reflects a genuine commitment to transparency, accountability, and user trust. Unfortunately, too many businesses treat it as just another box to check.

In this episode of Priv, host Dona Fraser is joined by Wills Catling, Director at Myna Partners, for a candid and comprehensive conversation on what it really takes to get a privacy policy right. Together, they unpack the critical elements of a strong policy—from risk management and accountability to opt-in vs. opt-out frameworks, cookie strategies, and how to navigate the patchwork of state, federal, and international regulations.

Key Takeaways

00:00 Introduction to Privacy Policies

03:25 Understanding Internal Governance for Privacy

08:04 The Importance of Accountability in Privacy

11:32 The Role of Privacy Notices as Contracts

17:50 Distinguishing Accountability from Internal Controls

20:52 Training and Compliance in Data Privacy

27:27 Common Mistakes in Drafting Privacy Notices

32:10 Building Trust Through Transparency

36:03 Navigating Opt-In vs. Opt-Out Consent

40:31 The Future of Cookie Banners and User Consent

44:24 The Challenge of Obtaining Informed Consent

46:08 Creating Effective Privacy Policies

Additional Resources:

Myna Partners

Episode Show Notes: The Government Purchase of Private Data

September 27, 2023Privacy Abbreviated Show NotesData Privacy, Government Data Purchase, Legal Privacy Issues, Privacy ConcernsBBB National Programs

On this episode of Privacy Abbreviated, hosts Dona Frazier, Senior Vice President of Privacy Initiatives at BBB National Programs, and Jason Cronk, chair and founder of the Institute of Operational Privacy Design, are joined by guest Matthew Tokson, professor at the University of Utah College of Law. He joins them to discuss government purchasing of private data.

Dona launches us into the conversation, asking Professor Tokson to define government purchase of private data and share with listeners why there is such a concern.

Continue reading Episode Show Notes: The Government Purchase of Private Data →

Episode Show Notes: Flo on Priv: Data Privacy Challenges in Women’s Health Apps

December 14, 2022Privacy Abbreviated Show NotesData Privacy, Flo, HIPAA, Women's Health AppsBBB National Programs

00:00 – In episode five of Privacy Abbreviated, hosts Dona Fraser, Senior Vice President of Privacy Initiatives at BBB National Programs (BBB NP), and Arlo Gilbert, the CEO and founder of Osano, sit down to discuss data privacy measures among health apps. They’re joined by Tsimafei Savitski, Chief Legal Compliance Officer of the female health and wellness app Flo and Roman Bugaev, Chief Technology Officer of the app.

Continue reading Episode Show Notes: Flo on Priv: Data Privacy Challenges in Women’s Health Apps →

Flo on Priv: Data Privacy Challenges in Women’s Health Apps

December 14, 2022Privacy AbbreviatedData Privacy, Flo, HIPAA, Women's Health AppsBBB National Programs

Podcast (privacyabbreviated): Play in new window | Download (Duration: 27:46 — 25.4MB) | Embed

Subscribe: Apple Podcasts | Spotify | RSS

Every day, we count steps with fitness trackers, log weight and diet information into apps, and share personal health information on platforms not covered by the Health Insurance Portability and Accountability Act (HIPAA). When we do so, how is that information we input collected, safeguarded, and shared online, and who carries the burden of privacy protection?

In this week’s episode of Privacy Abbreviated, host Dona Fraser and new host Arlo Gilbert are joined by Tsimafei Savitski, Chief Legal Compliance Officer, and Roman Bugaev, Chief Technology Officer of Flo, an app designed to track ovulation cycles. Due to the nature of the app, users are asked to share detailed information about their health and wellness, and Flo is well aware of this sensitivity. Listen now to hear how the Flo team is raising the bar for privacy by upholding anonymity on their platform.

For more information about this episode, read the show notes here.

Episode Show Notes: The Future of EU-U.S. Data Transfers

November 16, 2022Privacy Abbreviated Show NotesData Privacy, Data Transfers, EU Privacy Shield, Privacy LawBBB National Programs

00:00 – In episode four of Privacy Abbreviated, hosts Rebecca Knight, Policy Council for Privacy Initiatives at BBB National Programs, and Catherine Dawson, General Counsel and Chief Privacy Officer of Osano, sit down to discuss The EU-U.S. Privacy Shield frameworks.

01:30 – In this episode, they are joined by guest Cobun Zweifel-Keegan, managing director of the Washington DC office of the International Association of Privacy Professionals (IAPP). IAPP is a resource for professionals who want to develop and advance their careers by helping their organizations successfully manage these risks and protect their data. In fact, they’re the world’s largest and most comprehensive global information privacy community.

Continue reading Episode Show Notes: The Future of EU-U.S. Data Transfers →