Reputation Damage Attracts Privacy Regulators, Says Snapchat Lawyer
Having a poor reputation for data privacy could attract regulators, warned Snapchat Product Counsel Dareus Robinson on a Thursday webinar by the compliance vendor TrustArc.
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
People love to read a “big name headline” such as Discord’s recently disclosed data breach (see 2510060063 and 2510090008), he said. “Regulators are people, so they latch onto the same things, and once you've screwed up … they will use that as an excuse to get a foot in the door.”
“I actually worked at the FTC for a while,” added Robinson, who in 2013 was a summer intern for then-Commissioner Julie Brill. “Once we get there, we're not keen to leave. We will look around. We get inside the house, and we'll start looking around. And that's usually not something you want.”
Robinson noted that the Discord incident involved a third-party customer service vendor. Just about every company uses those, so the messaging platform’s breach is “a really prominent example” of why “risk management matters, and the sorts of things that can happen when you don’t get it right.”
It's also important for organizations to address risk from AI in the workplace, since employees are likely to use the technology either way, said Robinson. "If you don't have an AI policy -- and you blanket say no to it -- you will have shadow IT."