Last week the Los Angeles Chapter of Women in eDiscovery invited me to moderate a discussion with some amazing women leaders in the Information Governance space about the challenges & solutions related in identifying users and data as part of the eDiscovery process. In our conversation with Susan Bennett of Information Governance ANZ and Justine Phillips of Sheppard Mullin we covered topics around:
- Securing and locating data with personally identifiable information (PII) for eDiscovery identification stage in relation to cross borders (e.g. tokenization and legal approaches)
- Compliance and benchmarking within an organization for identifying relevant data
- Using identity management for acceptable risk and understanding risk profiles
As part of this discussion, Justine and Susan provided materials to share with our broader audience.
Justine shared with us some great insight on the California Consumer Privacy Acct (CCPA) and California Privacy Rights Act (CPRA) as organizations continue to understand the different types of “Personal Information” (PI) required to be protected. She shared what is considered to be Personal Information by the CCPA and CPRA.
Susan supplied us with her knowledge related to data privacy in Australia and around the globe with the General Data Protection Regulation (GDPR) as the gold standard privacy protection regulation. Susan has written an article explaining the InfoGovANZ Information Governance model and framework that I suggest people review as part of their IG learnings: Information Governance: optimising the lifeblood of organisations – InfoGovANZ
There is also a section on law and eDiscovery in the recently released InfoGovANZ Hindsights and Insights Report – Information governance reflections on 2020 and insights for 2021.
Thank you to the wonderful Women in eDiscovery — Los Angeles Chapter for the opportunity to learn and facilitate an interesting conversation with Justine and Susan. It can be overwhelming with the amount of complexity and nuance along with all the dense information around data privacy. Both Justine and Susan helped me continue deepen my understanding surrounding GDPR, CCPA, CPRA, and other data privacy rules around the globe. My heartfelt gratitude to Justine and Susan for sharing their expertise and insight.
