Privacy Impact Shop

In this episode of The Privacy Impact Shop, hosts Ben and Shaab dive into the ever-evolving world of privacy, regulation, and the value of data. From their recent travels and training sessions to the latest ICO actions on cookie compliance, the conversation explores how organisations are managing consent, regulation, and reputation in a fast-moving digital landscape.They tackle hot topics including:The ICO’s expanded review of the UK’s top 1,000 websites for cookie banner complianceThe rise of “consent or pay” models and what they mean for consumers and businessesThe growing commercialisation of personal data and what your data might really be worthProfiling tools, safety applications, and the ethical boundaries of data-driven decision-makingLively, insightful, and often humorous, Ben and Shaab unpack how privacy, technology, and commerce continue to collide and what it means for organisations navigating compliance.

In this episode of the Privacy Impact Shop brought to you by blackfootuk.com and gdpr.ie, Ben and Shaab are joined by PR technology expert Samantha Deeks to explore a fundamental challenge emerging at the intersection of AI and privacy law. The conversation centres around Samantha's revealing experiment with Claude AI, where she discovered the large language model had incorrect information about her company's co-founder—and more troubling still, admitted it couldn't "unlearn" this misinformation even when corrected. This discovery exposes a core architectural problem: neural networks, designed to replicate human thought processes, cannot selectively forget information the way traditional databases can delete records. This creates what may be an insurmountable compliance challenge with GDPR's right to rectification and erasure. The discussion examines how this "whisper campaign" effect—where AI provides personalised, unverifiable information in private conversations—could fundamentally change how reputational management works.Ben, Shaab, and Samantha explore the broader implications for the regulatory landscape, comparing the EU AI Act's use-case focused approach with traditional data protection frameworks. They discuss whether privacy laws will need to adapt to accommodate AI's technical limitations, or if AI regulation will need to become more prescriptive. The conversation also delves into the philosophical implications of AI regulation—how it's forcing us to redefine human values and what behaviours we consider fundamentally unacceptable, regardless of legal compliance. The episode concludes with practical advice for PR professionals and business leaders about understanding AI's reputational risks, the importance of organisations proactively auditing what AI systems know about them, and why governance frameworks may be more critical than regulatory compliance in managing AI-related harms.Perfect for privacy professionals, PR practitioners, business leaders implementing AI strategies, and anyone grappling with how artificial intelligence is reshaping our relationship with information, truth, and personal data rights.

In this episode of Privacy Impact Shop, Ben and Shaab dive into the evolving complexity of global privacy regulations and what it means for businesses operating across multiple jurisdictions. They discuss how we've moved from the post-GDPR era of regulatory harmonisation to a new reality where major economic blocks—the US, EU, Brazil, Singapore, and China—are taking increasingly divergent approaches to AI and data protection. This shift is forcing businesses to reconsider their global privacy strategies, sometimes choosing to compartmentalise operations rather than apply universal standards. The conversation also reveals insights into what's driving demand in the privacy market, from AI governance frameworks like NIST RMF and ISO 42001, to the growing need for technical implementation expertise. Ben shares how their privacy practice has grown rapidly by combining consultancy with training, explaining why being able to teach something demonstrates you truly understand it. Perfect for privacy professionals, business leaders, and anyone trying to navigate the increasingly complex world of global data protection regulations in an AI-driven economy.

In this episode of Privacy Impact Shop, we sit down with Samantha Deeks, a startup expert and former CEO of PRgloo, who has a refreshingly different perspective on GDPR. Rather than seeing data protection as a regulatory burden, Samantha explains how she used GDPR principles to build better products, improve data quality, and gain competitive advantage.From building journalist databases with privacy-by-design principles to achieving a 20% increase in user retention through proper data governance, Samantha shares practical insights on how treating data protection as a quality framework rather than a tick-box exercise can deliver tangible business benefits. She also reveals her simple but effective approach to GDPR: "do unto other people's data as you would have done unto yourself."Perfect for entrepreneurs, PR professionals, and all those interested in seeing data protection through a business opportunity lens rather than a compliance headache.

In this episode of The Privacy Impact Shop brought to you by Blackfootuk.com and GDPR.ie, hosts Ben and privacy veteran Shaab take you through another thought-provoking conversation on the shifting role of Data Protection Officers in today’s AI-driven world. From major fines hitting Apple and Meta to the evolving demands of GDPR, the Digital Markets Act, and the EU AI Act, they explore how regulation is adapting—and in some cases, falling behind—emerging technologies. What it really means to be a DPO today? Whether certifications or experience matter more? How AI is changing the skills required for privacy professionals? The growing demand for privacy engineers and data governance experts? Whether you're a DPO, a privacy enthusiast, or just curious about the future of compliance, this episode is packed with insights, laughs, and real-world advice. 👉 Don’t forget to like, subscribe, and share!

In this episode of The Privacy Impact Shop, we take a hard look at what’s not working in data privacy today. Joined by tech law expert Frank Jennings, we discuss the common pitfalls businesses face—from poor data hygiene and outdated retention policies to the skyrocketing costs of subject access requests (SARs). Are you unknowingly hoarding data that could come back to haunt you? We also explore how organisations struggle with compliance, the challenges of building a strong privacy culture, and why regulatory enforcement isn’t always enough to drive real change. Tune in for expert insights and practical advice on how businesses can better protect their data and stay ahead of privacy risks!This episode is not to be missed.

In this episode of The Privacy Impact Shop, we dive into the world of data portability, monetising personal data, and the ever-evolving AI regulations shaping the digital landscape. Our expert guest, Frank Jennings, a lawyer with 25 years of experience specialising in technology, cloud, and artificial intelligence law, joins us to discuss whether individuals should get paid for their data, how businesses can adapt to GDPR and AI regulations, and whether "human-in-the-loop" decision-making is really the answer to AI bias. Expect insightful discussions, practical takeaways, and a touch of humour as we tackle the privacy paradox—why do consumers say they care about data privacy but still give it away so easily? Tune in for expert insights and a fresh perspective on the future of data rights and AI governance.

In this episode, hosts Ben Stevens and Shaab Al-Baghdadi discuss their latest insights from travels across the U.S. and Europe, exploring the evolving landscape of data protection. The conversation touches on the ripple effects of landmark regulations like CCPA, the challenges of navigating global compliance standards, and the growing role of social media in data-driven marketing.They delve into LinkedIn’s fine from the DPC and examine the broader implications for privacy professionals using platforms with compliance issues. The hosts also unpack the rise of AI in corporate governance, from ethical implementation to the risks of data poisoning in training models.Looking ahead into 2025, they share predictions on AI regulation, consumer trust, and the future of privacy in a world increasingly shaped by technology. Tune in for thought-provoking discussions and a sneak peek at a future guest, a renowned data protection lawyer, who will shed light on data portability and its implications.Whether you're a privacy novice or a seasoned expert, this episode is packed with valuable insights to help you stay ahead in the world of data protection.

In this episode, hosts Ben Stevens and Shaab Al-Baghdadi kick off their new podcast with an exciting announcement about Blackfoot’s acquisition of GDPR.ie. They take a trip down memory lane, sharing how they first met and began working together over a decade ago, and reflect on their journey since then. Tune in for a deep dive into the latest news and insights around data protection, the qualities that make a great consultant in the industry, and the impact of AI on data privacy. Whether you're a seasoned professional or just starting out, this episode has something for everyone.