When handling personal data, organizations must utilize both best practices for privacy and cybersecurity to ensure that it is protected, sound, and treated in line with individual and societal expectations.
FPF’s work on privacy and cybersecurity focuses on the overlap between the two areas, including how different global laws and policy regimes tackle that overlap. Through FPF’s Privacy and Cybersecurity Expert Group, FPF facilitates the coordination and collaboration of privacy and cybersecurity experts to promote common goals, strategies, and understanding.
FPF’s Cybersecurity Advisory Committee comprises top cyber and privacy executives at industry-leading companies and civil society and academia representatives.
Advisory committee members include:
- Emily Hancock, Cloudflare
- Stephenie Handler, Gibson Dunn (Chair)
- David Hoffman, Duke University, Sanford School of Public Policy
- Anitha Ibrahim, Amazon Web Services
- Andy Serwin, DLA Piper
- Chad Sniffen, National Network to End Domestic Violence
- Melanie Tiano, T-Mobile
- Heng Xu, American University
ETSI’s consumer IoT cybersecurity ‘conformance assessments’: parallels with the AI Act
In early September 2021, the European Telecommunications Standards Institute (ETSI) published its European Standard to lay down baseline cybersecurity requirements for Internet of Things (IoT) consumer products (ETSI EN 303 645 V2.1.1). The Standard is a recommendation to manufacturers to develop IoT devices securely from the outset. It also provides an internationally recognized benchmark – […]
The ebb and flow of trans-Atlantic data transfers: It’s the geopolitics, stupid!*
The following is a guest post to the FPF blog from Lokke Moerel, Professor of Global ICT Law at Tilburg University and a Dutch Cyber Security Council member. Guest blog posts do not necessarily reflect the views of FPF. 1. Introduction There is a call for a rational debate on trans-Atlantic data transfers. Frustrations increase […]
UPDATE: China’s Car Privacy and Security Regulation is Effective on October 1, 2021
On August 20, 2021, the Cyberspace Administration of China (CAC) released an updated regulation on car privacy and data security that comes into force on October 1, 2021.
New FPF Study: More Than 250 European Companies are Participating in Key EU-US Data Transfer Mechanism
Co-Authored by: Drew Medway & Jeremy Greenberg European Companies’ Participation in Privacy Shield Up Nearly 30% from the Past Year. EU-US Privacy Shield Remains Essential to Leading European Companies. From Major Employers such as Logitech and Siemens to Leading Technology Firms like Telefónica and SAP, European Companies Depend on the EU-US Agreement. The Privacy Shield […]
Commoditization of Data is the Problem, Not the Solution – Why Placing a Price Tag on Personal Information May Harm Rather Than Protect Consumer Privacy
This guest post is by Lokke Moerel, a Professor of Global ICT Law at Tilburg University and Senior of Counsel at Morrison & Foerster in Berlin, and Christine Lyon, partner at Morrison & Foerster in Palo Alto, California. To learn more about FPF in Europe, please visit https://fpf.org/eu. By Lokke Moerel and Christine Lyon[1] Friend and […]
Essentially Equivalent:
“In a milestone decision on transatlantic data protection, the Court of Justice of the European Union (CJEU) issued its judgment in the Schrems case, declaring the Commission decision on the EU-U.S. Safe Harbor agreement invalid. The CJEU declared that such a decision requires a finding that the level of protection of fundamental rights and freedoms in the laws and practices of the third country is “essentially equivalent” to that guaranteed within the EU.”