"The Data Diva" Talks Privacy Podcast" podkast

The Data Diva E297 - Patrick Zeller and Debbie Reynolds

0:00
43:13
Do tyłu o 15 sekund
Do przodu o 15 sekund

Send us Fan Mail

Patrick Zeller, General Counsel, Jetstream Security

In this episode of The Data Diva Talks Privacy, Debbie Reynolds,  The Data Diva, speaks with Patrick Zeller, General Counsel of Jetstream Security, about artificial intelligence, cybersecurity, privacy, and the evolving risks organizations face as AI becomes embedded throughout their operations. Patrick shares his unique career journey from the Illinois Attorney General's Office into technology law, cybersecurity, and emerging technologies, explaining how his early interest in computers shaped a career that bridges both legal and technical disciplines.

The conversation explores how organizations are adopting AI at an unprecedented pace and why many leaders are struggling to understand the risks associated with these technologies. Patrick explains that AI entered many organizations through productivity tools and enterprise platforms before legal, privacy, and security teams had an opportunity to evaluate its implications. As a result, many companies are now working to gain visibility into how AI is being used, what information is being shared, and where risks may exist.

Debbie and Patrick discuss AI risk through three primary categories: input risks, output risks, and related organizational risks. They examine how employees may inadvertently expose sensitive information by entering confidential, financial, employee, legal, or proprietary information into AI systems. The discussion highlights real-world examples involving compensation information, trade secrets, attorney-client privileged communications, and sensitive corporate data that may be exposed through unauthorized use of AI tools.

The episode explores the growing challenge of shadow AI, where employees use public AI tools outside approved enterprise environments. Patrick explains that organizations must understand which AI tools are being used, who is using them, and which systems and data those tools can access. The conversation also covers SEC reporting obligations, cross-border data transfer concerns, unauthorized access incidents, insider threat risks, and the growing need for organizations to monitor AI interactions with sensitive business information.

Patrick and Debbie discuss how organizations must rethink traditional security models because AI is no longer operating outside the corporate perimeter. Instead, AI increasingly functions as an insider with potential access to valuable data and systems. The conversation explores how organizations can improve visibility, governance, and oversight while balancing innovation and business objectives.

The discussion concludes with a broader examination of how society is approaching AI adoption. Patrick introduces the concept of a "Galbraithian inversion," in which organizations adopt powerful technologies before fully understanding how they work. Debbie and Patrick discuss why this creates both opportunities and challenges as companies race to deploy AI while simultaneously trying to understand its legal, security, privacy, and governance implications.



By popular demand, Debbie Reynolds Consulting is now offering executive briefings on emerging data privacy risks and how companies can avoid them. To learn more, visit the Executive briefings page on my website.

Support the show

Become an insider, join Data Diva Confidential for data strategy and data privacy insights delivered to your inbox.


 💡 Receive expert briefings, practical guidance, and exclusive resources designed for leaders shaping the future of data and AI.


 👉 Join here: http://bit.ly/3Jb8S5p

Debbie Reynolds Consulting, LLC



Więcej odcinków z kanału ""The Data Diva" Talks Privacy Podcast""