When handling personal data, organizations must utilize both best practices for privacy and cybersecurity to ensure that it is protected, sound, and treated in line with individual and societal expectations.
FPF’s work on privacy and cybersecurity focuses on the overlap between the two areas, including how different global laws and policy regimes tackle that overlap. Through FPF’s Privacy and Cybersecurity Expert Group, FPF facilitates the coordination and collaboration of privacy and cybersecurity experts to promote common goals, strategies, and understanding.
FPF’s Cybersecurity Advisory Committee comprises top cyber and privacy executives at industry-leading companies and civil society and academia representatives.
Advisory committee members include:
- Emily Hancock, Cloudflare
- Stephenie Handler, Gibson Dunn (Chair)
- David Hoffman, Duke University, Sanford School of Public Policy
- Anitha Ibrahim, Amazon Web Services
- Andy Serwin, DLA Piper
- Chad Sniffen, National Network to End Domestic Violence
- Melanie Tiano, T-Mobile
- Heng Xu, American University
Featured
FPF Files Comments for the FTC Health Breach Notification Rule Addressing Specific Definitions and Clarity of Scope
On August 8th, the Future of Privacy Forum (FPF) filed comments with the U.S. Federal Trade Commission (the Commission) regarding the Notice of Proposed Rulemaking (NPRM) to clarify the scope and application of the Health Breach Notification Rule (HBNR). The HBNR was promulgated in 2009 as part of the American Recovery and Reinvestment Act as […]
Protecting the Privacy of Customers of Broadband and Other Telecommunications Services
The Future of Privacy Forum filed comments with the Federal Communications Commission (FCC) in response to the FCC’s proposed rules regarding the privacy and data practices of Internet Services Providers (ISPs). The FCC’s March 31, 2016 Notice of Proposed Rulemaking (NPRM or Notice) seeks to regulate ISP’s data practices pursuant to Section 222 of the Communications Act – a sector-specific statute that includes detailed requirements that apply to telecommunications services, but does not apply to other services offered by broadband providers nor to online services operating at the edge of the network (e.g. web sites).