Privacy

Start here

Read this beat in order

Start with the compliance theater argument, then move to where privacy programs actually break down — in retention systems that don't match policy, and product cycles that don't wait for legal review.

Step 1

GDPR at Eight: Real Law, Fake Compliance Theater

May 25, 2026 / 6 min read

The clearest statement of what real privacy law requires versus what compliance theater delivers — and why that gap hasn't closed.

Today marks eight years since GDPR enforcement began. Unlike most awareness campaigns we investigate, this anniversary commemorates something that actually works: the …

Start here

Core threads

What this beat keeps arguing about

Questions

Start with the pressure points

Where does the retention policy describe what should happen, and where does it describe what actually happens?
Which privacy review steps arrive early enough to change a product decision versus early enough only to document objections?
What would a right of erasure request expose about your actual data estate versus your assumed one?

Article

Internet Safety Month: Child Protection Became Sales

June 1, 2026 / 7 min read

June is National Internet Safety Month, which means it’s time for parents to be very, very worried about what their children are doing online. Conveniently, it’s also time for …

Read analysis

Article

GDPR at Eight: Real Law, Fake Compliance Theater

May 25, 2026 / 6 min read

Today marks eight years since GDPR enforcement began. Unlike most awareness campaigns we investigate, this anniversary commemorates something that actually works: the world’s first …

Read analysis

Article

World Password Day: Security Hygiene as Revenue

May 2, 2026 / 6 min read

Today is World Password Day, which means it’s time to feel bad about your password habits and grateful for the password manager subscriptions that will save you from your own human …

Read analysis

Other beats

Explore another topic

Topic

GRC

Topic

Security

Topic