Practical Privacy with Orla Dormer

In this episode of Practical Privacy, Orla Dormer speaks with Vicky Owens, Senior Data Privacy and Compliance Counsel at SkyShowtime, about the challenges of being a global data protection leader.Vicky shares why a privacy-only mindset often falls short, and how understanding business priorities, aligning with stakeholders, and positioning privacy as an enabler is key to success. A practical conversation on influence, prioritisation, and making privacy work in complex organisations.

What does it take to build a global privacy framework that actually works? In this episode, Marcelo Canha, Global Privacy Director and DPO at Organon, shares his experience designing a privacy program from scratch across 80+ countries — starting with a technically perfect framework that ultimately failed.The lesson? Complexity doesn’t scale. Marcelo explains how shifting to a simple, practical approach — focused on DPIAs, RoPAs, and real business needs — made the difference, and why buy-in is not just a buzzword, but a strategy. A must-listen for privacy leaders navigating global compliance, limited resources, and the gap between regulation and reality.

What does it really take to become a DPO? In this episode, Naveed Malik (Group DPO at Informa) shares his journey from a non-traditional background into a senior privacy role — and why technical expertise alone isn’t enough. From building leadership skills outside of work to learning inside established governance frameworks, this episode explores the practical steps needed to bridge the gap and grow into a DPO role.

In this episode of Practical Privacy, Orla Dormer speaks with Roy Kamp, Director at UKG and former DPO at Wayfair and McAfee, about a common challenge in vendor negotiations: customers insisting on Standard Contractual Clauses (SCCs) even when they may not apply. Roy explains why this happens, why negotiating every SCC request doesn’t scale, and how reframing the discussion around actual data flows rather than contractual positions can reduce friction and improve trust with customers. The conversation explores practical ways privacy teams can enable sales and legal teams, use transparency to build credibility, and avoid unnecessary complexity in customer DPAs.

In this episode of Practical Privacy, we explore one of the most common misconceptions in SaaS and AI development: the belief that data can truly be fully anonymized.Orla Dormer speaks with Noemie Weinbaum – Managing Counsel at UKG, about why organizations should stop assuming their datasets are anonymous and instead treat them as pseudonymized personal data. They discuss why true anonymization is extremely difficult under GDPR standards, how SaaS companies often use the same datasets for both service delivery and AI training, and why this creates real risks around re-identification, compliance, and customer trust.Noemie also shares practical advice on building the right governance approach from the start — integrating privacy into the software development lifecycle, involving product and engineering teams early, and creating a cultural shift toward transparent data protection practices. 

In this episode of Practical Privacy, Orla Dormer speaks with Avishay Klein, Head of Privacy, AI and Cyber Department at Barnea Jaffa Lande. They discuss why privacy programs often fail at implementation — from unrealistic data retention timelines to top-down governance models that teams cannot operationalise. The conversation explores practical ways to align GDPR and AI governance requirements with real business capabilities, emphasising collaboration, understanding operational constraints, and designing processes that teams can actually implement.

How do you make AI Act and GDPR training something people actually pay attention to?In this episode of Practical Privacy, Orla Dormer speaks with Jared Browne, Fexco Group Head of Privacy & AI Governance, about turning regulatory training into engaging, story-driven experiences. From framing AI Act sessions as a murder mystery to delivering AI literacy as a playful “Overlords of the Rings” narrative, Jared shares how storytelling, humor, and structure dramatically improve attention and retention. 

Embedding AI governance across 39 countries is not just a compliance exercise, it’s a change management challenge. In this episode of Practical Privacy, Orla Dormer speaks with Martin Woodward, Director Global Legal & Global Responsible AI Officer at Randstad, about building a global AI governance program in a decentralized organization. Martin shares why a centralized, top-down approach led to slow adoption, and how appointing Responsible AI Officers in each market transformed engagement and ownership. He also explains why culture should shape your governance strategy, especially in a human-centric organization. If you're starting or scaling AI governance, this episode offers practical lessons on turning principles into action across borders.

In Episode 2 of Practical Privacy, Orla Dormer is joined by Helen Graham (Global Head of Privacy at IVC Evidensia) to unpack one of the biggest challenges privacy teams face today: keeping up with a constant wave of new and evolving data legislation. Helen shares why compliance can’t be treated as a legal exercise alone, how operational context is critical to assessing real business impact, and why effective privacy programmes depend on cross-functional and cross-border collaboration. The conversation also reflects on leadership, buy-in, and the ongoing need for privacy professionals to explain and defend why privacy matters, even after years in the role. A practical discussion for anyone working to make privacy scalable, sustainable, and embedded in the business.

In this first episode of Practical Privacy, Orla Dormer sits down with Dave Evans to unpack a problem many privacy teams recognise instantly: having a ROPA that technically exists, but does not actually help you answer real questions.