Contributor: Mary Ellen Callahan, CIPP/US

Mary Ellen Callahan, CIPP/US, is a nationally recognized privacy attorney with an extensive background in consumer protection law. As the longest-serving former chief privacy officer of the U.S. Department of Homeland Security—the first statutorily mandated privacy office in any federal agency—Callahan has a unique and broad knowledge of and experience with the interface of the protection of privacy, civil rights and civil liberties with cybersecurity and national security issues. During her tenure at the Department of Homeland Security, Callahan also served as Chief Freedom of Information Act (FOIA) Officer, responsible for centralizing both FOIA and Privacy Act operations to provide policy and programmatic oversight and support implementation across the department. Callahan is the founder and now serves as chair of Jenner & Block’s Privacy and Information Governance Practice.

Privacy Dispatches

How Do You Engineer Privacy? NIST Seeks Answers

By Mary Ellen Callahan

Last week, the National Institute of Standards and Technology (NIST) hosted a workshop to discuss and develop the concept of privacy engineering. This novel workshop brought together speakers from both the public and the private sector. Although a great deal was covered, three topics recurred throughout the workshop and appeared to be of special interest to NIST:

  • the lack of technical standards...
Cybersecurity

Is SEC Cybersecurity Guidance Working?

By Mary Ellen Callahan

Imagine that the FBI and DHS have arrived at your company to inform you of a potential cyber threat. Your public company disclosure obligations may not be the first thing on your mind, but such issues will quickly emerge.

On Wednesday of this week, the U.S. Securities and Exchange Commission (SEC) held a roundtable on cybersecurity to explore whether the current SEC guidance on cybersecurity is...

Cybersecurity

SEC and Cybersecurity—What Publicly-Traded Companies Need to Know

By Mary Ellen Callahan

Note from the Editor:

Mary Ellen Callahan, CIPP/US, and Elaine Wolff, both of Jenner & Block, will be part of the breakout session "The SEC and Cybersecurity: What Every Publicly Traded Company Must Know" at the IAPP Global Privacy Summit in Washington, DC, on March 7 at 8:30 am. They will be joined by Nicole Maddrey, Vice President, Deputy General Counsel & Assistant Secretary, at Graham Holdings and Tangela Richter, Functional General Counsel—Direct Bank and Brokerage, Capital One.

With the news that Target intends to wait until it files its annual report in March with the Securities and Exchange Commission (SEC) on the investment consequences of its massive cybersecurity intrusion from  2013, the SEC and cybersecurity once again gains attention.

Since the SEC first issued its guidance on cybersecurity in October 2011, it has heightened its review of cybersecurity...

Accountability

For Federal Privacy Programs, the Final Fair Information Practice Principle Is Crucial

By Mary Ellen Callahan

When I was Chief Privacy Officer at the U.S. Department of Homeland Security from 2009-2012, I was asked frequently how the Department of Homeland Security Privacy Office was able to ascertain whether the privacy protections initially embedded in DHS programs and systems were being applied, and whether they were effective in protecting privacy. As with many things in privacy, the answer is:...

Opinion

Designing Privacy EVERYWHERE: Whirlwind Excursions Discussing Privacy Integration

By Mary Ellen Callahan

From Maryland to Ireland, Slovakia to Florida, privacy professionals and their industry colleagues are working on integrating Privacy by Design into business models and functionality. This ambition became evident to me when I spoke at five conferences in three countries on how to most effectively integrate privacy into the core functionality of business operations. This global trend should make...

Opinion

Oh, the Places You’ll Go! Mobile Privacy Developments and Paths for Companies

By Mary Ellen Callahan

You have brains in your head. You have feet in your shoes. You can steer yourself any direction you choose. But mobile companies should pick their direction with care, considering the words of the FTC Chair! (Apologies to Dr. Seuss)

Last Thursday, at the IAPP Global Privacy Summit, the new FTC Chair Edith Ramirez identified mobile privacy as one of her top policy and enforcement priorities. Her...