The Data Drop Panel for April 2022
Host Heidi Saas and special guests take a deep dive into the noteworthy, concerning, and downright fascinating stories featured in recent episodes of the Data Drop News podcast.
Pro tip: you can listen to The Data Drop Panel on your phone by subscribing to our podcast.
About The Data Drop
The Data Drop podcast is a production of the Data Collaboration Alliance, a nonprofit dedicated to advancing meaningful data ownership and global Collaborative Intelligence.
Join The Data Collaboration Community
The Data Collaboration Community is a data-centric community where professionals, nonprofits, and researchers join forces to collaborate on datasets, dashboards, and open tools in support of important causes. Learn more.
Heidi Saas: Hi I'm Heidi Sass, and I live in the Washington DC area. I'm a member of the community, the Data Collaboration Alliance. Welcome to the Data Drop Panel. Each month, we gather some leading data on privacy professionals to hear about the new stories that stood out for them over the past month or so. And in the fast paced world of data privacy, it's always interesting to hear what's the reason that eyebrows and curling the fist of the practice. I should note that all of the stories that we'll feature today have been included in our podcast, which delivers a five minute privacy news Roundup every other week.
This month on the data drop panel, we have three guests, Cat Coode, data, privacy consultant, and data privacy officer at Binary Tattoo. We have Jeff Jockisch who is CEO of Privacy Plan, and we have Chris McClellan Director of Operations and the Data Collaboration Alliance.
And we're going to get started on talking about the first article. With Cat, Google analytics to stop logging IP addresses in sunset old versions in privacy standards. Overhaul. What are your thoughts on that at Cat?
Cat Coode: Oh, so I was here a few months ago talking about Google analytics. And now we're back talking about Google analytics. There were some data protection agencies in Europe that had come down and said, we do not want. Google analytics in Europe anymore because they are taking private information and shipping it over to the U S and for people that are unfamiliar, there's always been a little bit of a contention with the IP address.
And is it personal information or is it not, is it personal information if it's combined with other information? So, because Google does not want to lose their foothold in the world, they are removing the IP of. From Google analytics, they are sunsetting the tool that we all know as universal analytics, which I didn't know that's what it was called, but apparently this, and they are moving to GA four, which is Google analytics for, which has all sorts of privacy and security embedded in it.
So that companies can continue to use the analytics information and not breach the regular. It's
Chris McLellan: Google Pearl, Google X, right. It had a pretty peaceful existence for 20 years or so it's something it's a political football. I guess, so this, this came out of something, you know, the, the privacy shield review and the Schrems lawsuits, I think it was in Austrian, France, where the countries that raised the alarm bells first and declared Google analytics is counter to GDPR, therefore, potentially illegal.
Cat Coode: Yeah. And even right down to the location, I mean, when we, we all talk about data and privacy by design, we always talk about office getting data and not collecting specific, specific data that you don't need. So they are finally using their, what they're calling data-driven attribution modeling to determine general locations and not actually specific locations, which again, privacy by design is what they should have been doing probably from the beginning.
Jeff Jockisch: The important thing here is to understand that that, that What this means is that marketers can't track your location as easily. Right. And they also can't connect you across devices as easily. And that's really what they're most concerned about. And. You know, location data is probably one of the most sensitive pieces of information about you.
And while IP address is not directly your location, it's very much in indirectly your location. It can be inferred very, very easily in many, many cases.
Chris McLellan: Yeah. I read the sort of the summary of the court's decision, which is. It's just too easy to re identify someone with that information and all the other stuff in Google analytics.