Let's Talk Privacy

DPDP in Practice: Privacy by Design, Cloud Resilience, and Real-World Data Protection with Anuuj Medirattaa

Fri, 17 Apr 2026 00:00:00 -0000

FREE GIVEAWAY

Following is the link for the Podcast listeners: https://bit.ly/4vaXnhw.

Here are the details about the books:

In this episode, Aakash sits down with Anuuj Medirattaa, Founder and CTO of Ace Data Devices, to unpack the practical realities of data privacy and protection. They discuss the critical shift in mindset required to view privacy not as a strict legal hurdle, but as a genuine business optimization opportunity. Anuuj brings his extensive background in cloud backup, disaster recovery, and ransomware readiness to the conversation, explaining how organizations must prioritize understanding their data inventory before getting bogged down in policy paperwork.

KEY TAKEAWAYS

Privacy is Business Optimization: Rather than treating data privacy purely as a terrifying legal or compliance issue, organizations should view it as a structural behavioral change that optimizes how personal data is handled and secured.

Start with a Data Baseline: Before rushing to create complex privacy policies and notices, businesses must first audit their environment to understand exactly what personal data they possess, where it is stored, and who has access to it.

Education Must Be Relatable: To successfully implement privacy principles across an entire company, training content needs to avoid dense legal jargon and be tailored specifically to the daily tasks of the audience, whether they are in sales, human resources, or IT.

Backup and Retention Go Hand-in-Hand: While disaster recovery and robust backups are essential for ransomware protection, organizations must balance this with strict data retention policies to ensure they are safely purging old data that is no longer needed.

Embrace Risk to Keep Growing: Deciding that you know everything about a topic is the exact moment you stop growing; continuous learning, taking calculated risks, and adapting to new regulations are vital for navigating the evolving data privacy landscape.

BEST MOMENTS

"I actually feel privacy is a business optimization issue, not a legal issue. In India, when we talk of a law, we get scared that we might have to file returns, we might have to deposit some taxes... No, privacy is not that."

"Start step-by-step from the rock bottom and you will quickly achieve the top rather than getting scared and looking at the top and making documents."

"The hardest audience is the people who believe they know everything. I don't know everything. I am still learning whatever is coming."

"The moment we say 'I am perfect in this', it means I have decided that I don't want to grow."

"Can I just run away by saying DPDP applies only to digital data? Yes, that way it is fine, but that misuse, if it is known that that happened with my team member, then my reputation, my team's reputation, and my organization's reputation... they are all at stake."

TO CONNECT WITH ANUUJ

www.linkedin.com/in/anuujmedirattaa

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

Aakash Suri (@letstalkprivacypodcast) • Instagram photos and videos

https://www.tiktok.com/@letstalkprivacypodcast

https://www.linkedin.com/company/as-privacy-ai-solutions-ltd/posts/?feedView=all

HOST BIO

Aakash is a recognised Data Privacy leader who helps organisations navigate complex regulations with clarity, confidence, and common sense. Unlike the legalese-driven privacy pros who simply regurgitate the law, Aakash breaks down what the rules actually mean, translates them into plain English, and gives businesses three SMART, pragmatic steps to demonstrate real compliance.

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Data Privacy, SimplifiedA practical introduction to data privacy designed for real-world understanding.This book focuses on simplifying core privacy concepts and explaining how they apply inside organisations — beyond legal definitions and theory.It is ideal for professionals, founders, and teams who want to understand privacy in a clear, structured, and usable way, and begin applying it in day-to-day decisions.Data Privacy Simplified: DPDP in PracticeA practical interpretation of India’s Digital Personal Data Protection framework, focused on how organisations can apply it in real scenarios.Instead of legal analysis, this book breaks down key concepts like consent, data handling, retention, and governance into an actionable understanding.While grounded in the Indian context, the insights are relevant for organisations globally looking to align privacy with everyday operations.

Gamechanger in AI: Claude & Cowork

Tue, 14 Apr 2026 00:00:00 -0000

In this episode, Aakash dives into the evolving landscape of artificial intelligence, focusing on the shift from simple chatbots to sophisticated "working partners." The spotlight is on Claude and Co-work by Anthropic, exploring how these tools assist with complex tasks like drafting policies, analyzing data, and summarizing reports.

KEY TAKEAWAYS

The Evolution of AI Utility: AI is transitioning from a "chat-based" tool used for short tasks to a collaborative assistant capable of supporting long-term, practical workflows.

The Data Privacy Paradox: As AI becomes more integrated into daily business tasks, there is an increased risk of users inputting sensitive, confidential, or personal data without proper safeguards.

The Necessity of Governance: To prevent "shadow use," organizations must establish clear rules, human review processes, and staff training rather than letting employees create their own unofficial workflows.

BEST MOMENTS

"Think of Claude as the prompt-based tool... on the other hand, think of Co-work as your actual assistant."

"The danger is simple: people love tools that save time, so they start using them more and more... and then before long, they’re pasting in customer data, employee data, or internal strategy."

"If your organization doesn’t have clear rules, people will make their own, and that is where the trouble begins."

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

Aakash Suri (@letstalkprivacypodcast) • Instagram photos and videos

https://www.tiktok.com/@letstalkprivacypodcast

linkedin.com/company/as-privacy-ai-solutions-ltd/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Data Armageddon and Trust: Luke Beckley on Fixing Governance Before It’s Too Late with

Fri, 10 Apr 2026 00:00:00 -0000

FREE GIVEAWAY

Luke is giving away a full day of in-person training using the “What would you do game“. A 6-hour session will include breaks, and lunch will be very interactive in the afternoon. Aimed predominantly at senior management, but happy to undertake a group of 15 persons max.

HOW TO ENTER (ONLY 1 WINNER) ENTRIES CLOSE 3 DAYS AFTER THE RELEASE OF THE EPISODE!

CONNECT WITH AAKASH SURI ON LINKEDIN AND DIRECT MESSAGE HIM OUTLINING WHY YOUR ORGANISATION SHOULD WIN THIS TRAINING? ALL ENTRIES WILL BE PUT IN A RANDOMISER TO DRAW OUT A WINNER AND RECIPIENT OF THIS TRAINING FOR THEIR ORGANISATION. ALSO FOLLOW THE INSTAGRAM AND TIK TOK PAGES OF THE LETS TALK PRIVACY PODCAST - LINKS BELOW:

Aakash Suri (@letstalkprivacypodcast) • Instagram photos and videos

https://www.tiktok.com/@letstalkprivacypodcast

To Connect With Luke

For data intelligence and protection

LinkedIn: linkedin.com/in/luke-beckley

Email: luke@dcharmonised.com

For Adventure challenges to raise money for charities or undertake Team building and Leadership training

Email: luke@unchartedsummits.world

Website: www.unchartedsummits.world

In this episode, Aakash sits down with data governance expert Luke Beckley. With nearly three decades of experience, Luke dismantles the dangerous misconception that cybersecurity alone equals data protection. Together, they explore the pitfalls of tick-box compliance, the critical importance of continuous, human-led data training, and how mid-sized organizations can safely integrate AI tools without exposing sensitive information.

KEY TAKEAWAYS

Cybersecurity does not equal data protection: Building a digital fortress is useless if you don't understand what data you are storing, why you collected it, and whether you actually need to keep it.

Training must go beyond the annual PowerPoint: Generic, once-a-year compliance presentations are ineffective. Organizations must implement consistent, targeted, and engaging human-led training to cultivate a genuine culture of privacy.

"Tick-box" compliance creates false security: Merely having privacy policies on paper or purchasing security software is insufficient if those policies are not actively understood and practiced by the employees handling the data daily.

Assess AI risks before deployment: With the rapid adoption of new AI tools, organizations must conduct Data Protection Impact Assessments to fully understand how data is being scraped, stored, and utilized by these platforms.

Good governance builds business trust: Treating data protection as a core ethical responsibility rather than a regulatory burden builds consumer trust, ultimately turning a compliance necessity into a driver for business growth.

BEST MOMENTS

"It's almost like we'll just pour more money at security to protect the data and not worry about actually mitigating the risk in the first place."

"If you lead with the human, the people in your organization, you will make better decisions around how you process that data, and your customers will see that."

"We are in a desperate kind of, almost like a race to the bottom to see who can get AI in as quickly as possible... but we've not done the prep."

"You've got to treat data protection as a driver for more business, as a driver for customer trust, as a driver for a more ethical-based organization."

"When data is clean and trusted, people stop arguing about the numbers and start making better decisions."

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Bitesize AI Briefings: Last Year, VIBE Coding Changed How the World Built

Fri, 03 Apr 2026 00:00:00 -0000

In this bite-sized AI episode, Aakash Suri dives into the trendy new world of vibe coding. Vibe coding allows anyone to build software and applications simply by describing their ideas to an AI in plain English. While tools like Lovable, Replit, and Cursor are democratizing app development and drastically increasing speed, they also introduce significant privacy and security risks if left unchecked.

KEY TAKEAWAYS

Vibe coding lowers the barrier to entry: Anyone can now build software by using plain English prompts to tell an AI what they need. This empowers non-technical staff to create tools without waiting weeks for developers.

Establish strict guardrails: Organizations need clear rules regarding who is authorized to use Vibe coding tools. This prevents the creation of unmonitored shadow IT systems right under your nose.

Privacy must be proactive, not reactive: Incorporate privacy controls early in the vibe coding process. Do not wait until the end or after launch when the app has already grown legs and become business-critical.

BEST MOMENTS

"In the simplest possible terms, it means using AI to help you build software by describing what you want in plain English."

"Instead of thinking, right, I need to build a database, connect an API, create a front end, fix the errors, you just simply say, build me a simple app to track my podcast guests, store notes, and remind me how to follow up. And the AI gets to work."

"If people start building tools with real customer data, employee data, or sensitive business information without proper controls, then, in my opinion, you've got a massive issue."

"You may not even know someone has built a shadow IT system right under your nose."

"Bring privacy in early. Not at the end, not after launch, but early. Before the thing grows legs and becomes business-critical."

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Are ISO 27001 Certificates Lying to You? Data Privacy, Red Flags, and Recent Deadlines with Jennifer Hirst

Fri, 27 Mar 2026 00:00:00 -0000

FREE GIVEAWAY

Jennifer is offering a 1-hour extended discussion and review of your organisation's compliance with ISO standards.

This could include discussion on:

Is ISO certification worth it for you?
Whether to get certified?
How should we prepare for stage 1 or stage 2 audits before certification?
How to improve your internal audits?
What to do if your external audits keep finding non-conformances.
How to improve your ISO manual.

ALSO, Free review of your certificate:

Please send Jennifer a copy of your certificate, and she will review it and let you know whether it covers what you are expecting. If you are sending a copy of a third-party certificate, typically a supplier's, please ensure you can share it. We may need additional information, but we will request it once we have reviewed the certificate. Certificate reviews are limited to three certificates per company requesting them.

Please contact Jennifer here, linkedin.com/in/jennifer-hirst-44b3b5b7

In this episode, Aakash Suri sits down with Jennifer Hirst, a seasoned compliance and ISO consultant, to demystify the ISO 27001 certification. Moving beyond the idea that ISO is just an IT security badge, Jennifer explains how it serves as a structured framework for organizations of all sizes to implement best practices in data protection.

KEY TAKEAWAYS

ISO 27001 is a Framework, Not Just a Label: It is a structured way of working that focuses on the confidentiality, integrity, and availability of data, regardless of company size.

Regulatory Alignment is Embedded: ISO 27001 is not separate from laws like GDPR; it requires organizations to be aware of and integrate their legal and regulatory obligations into their security controls.

The "Human Firewall" is Critical: Technical tools are insufficient without staff awareness. Training employees to recognize simple risks—like leaving a workstation unlocked or working on public transport—is vital to preventing breaches.

Scope Matters in Certification: A major red flag is a certificate with a limited "scope" that excludes the specific departments or processes where sensitive data is actually handled.

Continuous Improvement is Mandatory: Certification is not a one-time event. It requires regular internal audits, annual external assessments, and a full recertification every three years to adapt to new risks.

BEST MOMENTS

"It's not a badge, it's a way of working. It's making sure that IT security... is there high on the agenda for that company."

"While we all live in a very technical world... we don't. You just click on a link because it all looks so perfect."

"A certificate on the wall means very little if people are still bypassing processes, hoarding data, or ignoring basic hygiene."

"Top management needs to have the buy-in... if top management hasn't got the buy-in, you're never going to sustain it."

"Just putting one question into AI uses the amount of water that a town might use in a day... It's a staggering amount."

TO CONNECT WITH JENNIFER

linkedin.com/in/jennifer-hirst-44b3b5b7

https://qualityexcellence.co.uk/

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Bitesize AI Briefings: OpenAI's CEO Sam Altman's Succession Plan: Handing OpenAI’s CEO Job to an AI!

Wed, 25 Mar 2026 00:00:00 -0000

This episode of Let’s Talk AI features Aakash Suri diving into the Black Mirror reality of OpenAI’s latest headlines. The discussion centers on Sam Altman’s radical succession plan to eventually hand the company over to an AI model, his claims that OpenAI has "basically built AGI," and the resulting tension with Microsoft’s Satya Nadella.

KEY TAKEAWAYS

The AI Succession Plan: Sam Altman revealed a plan to eventually replace himself with an AI model, arguing that if OpenAI’s mission is to build AGI, that system should eventually be capable of running the company.

The AGI Claim & Microsoft Friction: OpenAI reportedly claims to have "basically built AGI," a statement that prompted a restrained pushback from Microsoft CEO Satya Nadella, who described the two companies as "frenemies" with different incentives.

Governance & Accountability Gaps: Replacing a human CEO with an AI model raises massive legal questions: who is responsible when an AI makes a harmful decision, and can a board truly "override" a system that is also the company's primary tool?.

BEST MOMENTS

"If your whole mission is to build AGI... then at some point that system should be able to run a company."

"Satya Nadella... described the relationship between Microsoft and OpenAI as 'frenemies' but with different incentives, timelines, and levels of hype tolerance."

"How do you audit the decision-making of a system that is both the tool and the boss?"

TO CONNECT WITH YOUR HOST

⁠https://www.linkedin.com/in/aakashsuri-thoughtleader/⁠

https://www.linkedin.com/company/as-privacy-ai-solutions-ltd/

HOST BIO
Aakash is a recognised Data Privacy leader who helps organisations navigate complex regulations with clarity, confidence, and common sense. Unlike the legalese-driven privacy pros who simply regurgitate the law, Aakash breaks down what the rules actually mean, translates them into plain English, and gives businesses three SMART, pragmatic steps to demonstrate real compliance.

This Podcast has been brought to you by Disruptive Media. ⁠https://disruptivemedia.co.uk⁠/

Career Playbooks for India’s Next‑Gen Privacy/AI Pros with Chetandeep Batra

Fri, 20 Mar 2026 00:00:00 -0000

FREE GIVEAWAY

To have access to the 2 FREE books, we have included a link here - https://drive.google.com/drive/folders/1IR6FamA9-XqC5txHBvi5MwkArAPVQBU5

ALSO, contact Chetandeep on LinkedIn for a FREE mentorship call HERE - linkedin.com/in/achetansbatra

This episode of Let’s Talk Privacy features a deep dive into the evolving landscape of data protection and artificial intelligence in India. Aakash Suri welcomes Chetandeep Batra, a senior security and privacy consultant at EY and IAPP New Delhi Chapter Chair, to discuss the practical challenges organizations face with the Digital Personal Data Protection (DPDP) Act.

KEY TAKEAWAYS

The Execution Gap: The biggest challenge for Indian organizations isn't the text of the DPDP Act, but the disconnect between boardroom policies and real-life data handling practices.

DPDP vs. GDPR: Unlike the GDPR, India's DPDP Act applies strictly to digital personal data, excluding paper-based records, which requires a specific digital-first maturity.

Collaborative Governance: Effective privacy management requires an "amalgamation" of legal, security, and management perspectives rather than any single department dominating the conversation.

AI’s Silent Integration: Regulators often underestimate how "invisibly" GenAI is being embedded into everyday enterprise tools, making auditing and tracing more complex.

Privacy by Design in AI: Beyond breach prevention, the future of AI compliance lies in "Privacy-Enhanced Technologies" and ensuring data is used only for its original documented purpose.

BEST MOMENTS

"Privacy is not implemented in isolation; it is negotiated."

"The biggest misunderstanding I see... is they underestimate the challenge of security, with terming with privacy all in all. It is not about documentation; it is not about certifications."

"I look at it as GDPR is the parent and the other legislations are like kids... they still have to follow what the parents are saying, but be bespoke to the country."

"Real risk lies in the silent usage of AI... it doesn't just process data; it is how it is interpreted, it creates abstractions, it creates embeddings."

"People like to be heard here... when the voice is heard, 50% of the things just go very smoothly."

TO CONNECT WITH CHATENDEEP

linkedin.com/in/achetansbatra

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

AI's Impact on the War in Iran

Wed, 18 Mar 2026 00:00:00 -0000

In this episode, Aakash Suri moves beyond science fiction to explore the sobering reality of AI on the modern battlefield. Using the current conflict in Iran as a case study, the discussion breaks down how AI is being used to scan satellite imagery, prioritize targets, and assist in cyber operations.

KEY TAKEAWAYS

Active Deployment: AI is no longer theoretical; it is actively used in the Iran war for target identification, threat ranking, and cyber warfare.

The "Rubber-Stamp" Risk: High-pressure environments lead commanders to reflexively approve AI recommendations, blurring the lines of human accountability.

Infrastructure as a Target: Tech companies’ data centers and cloud campuses are now considered military assets and potential targets due to their role in running war-fighting AI.

BEST MOMENTS

"AI isn’t just in the lab anymore; it’s in the war room."

"On paper, humans are in the loop. In reality, they’re just approving what the machine has already decided."

"We speed up the pipeline from a possible target to an explosion on the ground faster than our ethics, our laws, and our investigations can keep up."

TO CONNECT WITH YOUR HOST

⁠https://www.linkedin.com/in/aakashsuri-thoughtleader/⁠

https://www.linkedin.com/company/as-privacy-ai-solutions-ltd/

HOST BIO

This Podcast has been brought to you by Disruptive Media. ⁠https://disruptivemedia.co.uk⁠/

Blockchain as a New Risk Lens with Nav Sandhu

Fri, 13 Mar 2026 00:00:00 -0000

FREE GIVEAWAY INFORMATION: Nav has provided a discount for all Let’s Talk Privacy listeners, 50% off the knowledge Blockchain course by using the code: AAKASH50

In this episode, Aakash is joined by risk expert Nav Sandhu to explore the intersection of blockchain technology and data protection. Nav breaks down complex concepts like Zero-Knowledge Proofs and pseudonymization, illustrating how blockchain can protect personal identity while still proving authenticity. Aakash and Nav also discuss the evolving role of the AI Officer and why boards must move beyond to embrace privacy as a fundamental trust mechanism and business enabler.

KEY TAKEAWAYS

Blockchain Terminology vs. Risk Frameworks: Current risk vocabularies often fail to capture the nuances of blockchain, requiring regulators to build new frameworks that define elements like wallet addresses as Personally Identifiable Information.

The Power of Immutability: Because blockchain data is permanent and unchangeable, it offers a highly reliable "data lineage" for verifying income, transaction history, and consent.

Zero-Knowledge Proofs (ZKP): This technology allows a user to prove they possess specific knowledge without actually revealing the sensitive information itself.

Granular Consent: Unlike traditional "on/off" consent switches, blockchain allows individuals to fine-tune what data is visible to third parties, such as allowing a bank to see transaction categories without seeing specific retailers or locations.

Privacy as a Revenue Driver: When organizations demonstrate a robust commitment to looking after personal information, privacy evolves from a compliance hurdle into a competitive advantage that builds customer trust.

BEST MOMENTS

"If you risk nothing, you risk everything."

"Blockchain is the internet; industries will be built on top of it."

"Zero-knowledge proof is where a person can prove knowledge or authenticity without revealing that personal information."

"Privacy is not seen as a blocker; it's seen as a revenue driver and as a trust mechanism that will win you more customers."

"We need the right people in the right room; you cannot expect a Data Protection Officer to try and understand everything happening in AI on top of what they're already doing."

TO CONNECT WITH NAV

https://www.linkedin.com/in/nav-s-6194468b

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

Bitesize - 2025 AI in Review: My Chosen Highlights on DeepSeek, Stargate, and Deepfake Video

Thu, 12 Mar 2026 00:00:00 -0000

FREE GIVEAWAY

Free entry into Blockchain Introductory Course offered by AS Privacy & AI Solutions LTD, DM the word BLOCKCHAIN to ⁠⁠https://www.linkedin.com/in/aakashsuri-thoughtleader/⁠⁠⁠

ONLY AVAILABLE FOR THE FIRST 3 LISTENERS/RESPONSES SO DM NOW!

Welcome to a brand-new, bite-sized edition of Let's Talk Privacy, with Aakash Suri, a privacy and AI thought leader, who breaks down the monumental shifts of 2025. This episode moves beyond the "chatbot hype" to explore the intersection of global geopolitics, massive infrastructure investments, and the evolving risks of synthetic media.

KEY TAKEAWAYS

Geopolitical Competition: The release of China's DeepSeek R1 proved that powerful AI can be built more affordably, challenging the dominance of high-cost U.S. chipmakers like NVIDIA.

AI as Utility: Projects like "Stargate" (a collaboration between OpenAI, Oracle, and SoftBank) are treating AI data centers like energy or telecom infrastructure, requiring power equivalent to multiple nuclear plants.

The Death of Video Proof: High-fidelity video models now make it nearly impossible to distinguish between real and synthetic footage on small screens, creating massive fraud risks for CEOs and brands.

BEST MOMENTS

"2025 wasn’t just another year in AI. It was the year the market realized AI isn’t just about clever chatbots; it’s about geopolitics."

"Maybe you don't need to spend crazy money on NVIDIA to get good AI anymore."

"This is not a small IT project. This is infrastructure on the same scale as energy or telecoms."

TO CONNECT WITH YOUR HOST

⁠https://www.linkedin.com/in/aakashsuri-thoughtleader/⁠

https://www.linkedin.com/company/as-privacy-ai-solutions-ltd/

HOST BIO

This Podcast has been brought to you by Disruptive Media. ⁠https://disruptivemedia.co.uk⁠/

AI Governance, GDPR & Going Freelance: Building a Privacy‑First DPO Career in the Age of Data with Yassine Mernit

Fri, 06 Mar 2026 00:00:00 -0000

In this episode, Aakash Suri sits down with Yassine Mernit, a freelance Data Protection Officer and consultant who recently made the bold move from Paris to the UAE. Yassine shares candid stories from the front lines of global privacy, including the high-stakes moments he had to challenge powerful stakeholders and even general managers to protect data subjects.

KEY TAKEAWAYS

The Power of "No": A DPO’s most critical moments often involve halting high-value projects or forcing breach notifications, even when faced with resistance from senior leadership.

Communication is the Best Tool: Conflict is best resolved through early communication and training, helping departments see the DPO as a value-add rather than a "blocker".

Data Minimization as a Business Asset: Beyond legal compliance, data minimization is a revenue and efficiency driver that reduces storage costs and builds consumer trust.

AI Requires Specialized Knowledge: To govern AI effectively, DPOs must move beyond the "tick-box" mentality and understand technical architectures and AI-specific risks.

Freelancing Demands a Growth Mindset: Transitioning from an employee to a consultant is less about escaping a job and more about intentionally designing a career around your core values.

BEST MOMENTS

"You rarely win by just saying no... you need to communicate, you need to train people, you need to discuss with them one by one."

"The DPO is not responsible for the company... the responsibility is under the general manager. Our role is independent: we help and we advise."

"Real data protection leadership often looks like being willing to slow things down or even say no when it really matters."

"Responsible AI is not mysterious; it’s a set of disciplined habits, not magic."

"If you don't understand the AI lifecycle behind a solution, you will never be able to advise correctly prior to its launch."

TO CONNECT WITH YASSINE

linkedin.com/in/yassine-mernit

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Beyond Checkboxes on AI, Privacy, and the 10‑Dollar Policy Problem with Eniola Akinkugbe

Fri, 27 Feb 2026 00:00:00 -0000

FREE GIVEAWAY INFORMATION: Eniola has provided a discount for all Let’s Talk Privacy listeners, up to 20% off to join her Privacy Career Community by using the code: AAKASH20

In this episode, Aakash Suri is joined by Eniola Akinkugbe, a global privacy consultant and the visionary behind The Privacy Career Coach. Eni explains that real privacy is a living system embedded in a company’s DNA, not just a PDF. Aakash and Eni dive into the practicalities of AI governance, the certification trap facing new professionals, and how shifting the perspective from risk to trust advantage can turn privacy into a powerful revenue driver for businesses.

KEY TAKEAWAYS

Privacy is a System, Not a Document: A template policy off the internet won't protect you; a real program reflects your specific tech stack, data flows, and risk profile.

The "Certification Trap": Having multiple certifications doesn't guarantee job readiness. True proficiency comes from hands-on experience and the ability to operationalize law into plain-English business steps.

Shift to "Privacy by Design": Engaging privacy professionals at the start of a project, especially in AI, is far cheaper and more efficient than trying to "bolt on" compliance right before launch.

Revenue through Trust: When framed correctly to leadership, privacy is not just a cost center or a "no" department; it is a competitive advantage that builds customer trust and reduces organizational risk.

AI Literacy is the New Minimum: For privacy professionals to remain relevant, they must deeply understand how AI models are trained and how data flows through them across different jurisdictions.

BEST MOMENTS

"CEOs still see privacy as a document and not a system."

"Privacy isn't a PDF you download; it's a living system."

"The word 'risk' has a negative connotation... but the other side of risk is upside potential."

"Start now and get perfect later... jump and grow wings on the way down."

"Visibility is credibility. We've got to share our knowledge... even if it helps just one person."

TO CONNECT WITH ENIOLA

https://www.linkedin.com/in/enijack

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

From Back‑Office to Boardroom: Turning Information Leaders into Influential Personal Brands with Jacqueline Stockwell

Fri, 20 Feb 2026 00:00:00 -0000

FREE GIVEAWAY INFORMATION:

Please enjoy one free audio review copy of Blooming Good Information Management now available on Audible. Connect, Follow & DM Aakash Suri on Linkedin for Promo Code.

In this episode, Aakash Suri is joined by Jacqueline Stockwell, CEO and founder of Leadership Through Data. Jacqueline shares her unique journey from working in a dingy records library to founding a global training organization that operates across the UK, Australasia, and the USA. Jacqueline provides a masterclass on effective communication, explaining how to use sizzling copy, a 60-second elevator pitch, and behavioral psychology to win over senior stakeholders and transform privacy from a non-department into a strategic business enabler.

KEY TAKEAWAYS

The 60-Second Pitch: Professionals must be able to articulate who they are, what they do, and what they want to achieve in one minute to gain immediate authority in meetings.

Sell the Sizzle, Not the Steak: Stakeholders don't care about the intricacies of the law; they care about the outcome. Frame privacy as a way to solve problems rather than a "tick-box" exercise.

The "I/Me" Website Test: Audit your internal communications and website copy. If you say "I" or "Me" more than twice per page, the messaging is too self-centered and needs to be flipped to focus on the audience's benefit.

Color Communication: Tailor your pitch to the personality of the stakeholder: "Reds" want the bottom line, "Blues" want the data, "Yellows" want the enthusiasm, and "Greens" want to feel supported.

Visibility is Credibility: For introverted professionals, building a brand isn't about being loud; it’s about consistently showing up, sharing authentic lessons, and being visible so that the organization views you as a partner rather than an obstacle.

BEST MOMENTS

"Privacy isn't here to slow you down; it's here to help you move faster, safely."

"People learn from people... it shouldn't just be 'talk and talk' for eight hours while they wait for the next coffee break."

"If privacy only appears during an incident, you are seen as the police."

"Visibility is credibility. If you don’t show up, nobody is going to know what you’re doing."

"Take the risk or lose the chance... most decisions are reversible."

TO CONNECT WITH JACQUELINE

https://www.linkedin.com/in/jacquelinestockwell

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

My Journey Through My Spouse’s Lens with Ashna Suri

Fri, 13 Feb 2026 00:00:00 -0000

In this special episode, Aakash Suri is joined by his wife and partner, Ashna Suri, for an intimate look behind the curtain of his recent career transition. Aakash explores the emotional and practical realities of this shift with the person who has seen it all firsthand. The couple discusses the importance of strategic planning, the power of a growth mindset, and how role modelling courageous action has already begun to inspire their eight-year-old son.

KEY TAKEAWAYS

Mentorship is a Catalyst: Aakash attributes much of his rapid success to working with mentors who provided him with the "3 Cs" context, clarity, and confidence.

The Snowball Effect of Groundwork: What appears to be overnight success is often the result of a "snowball effect" that builds over months of late-night strategic planning and foundational conversations.

The Cost of Indecision: Remaining "on the fence" is the most dangerous professional state; even a wrong decision allows for a pivot, whereas no decision prevents growth.

Boundaries for Success: Creating physical and digital boundaries, like a home office separate from the main house and designated "digital detox" times, is essential for sustaining family harmony during a transition.

Inspiring the Next Generation: Children are more impacted by seeing their parents take courageous risks than by hearing about them; the couple’s son has already begun exploring his own "entrepreneurial" interests as a result.

BEST MOMENTS

"Sometimes the real insights about growth, balance, and authenticity come not from looking forward, but from reflecting through the lens of those who know you best."

"The hardest part is when people are on the fence... if you’re not moving, there’s no growth."

"Start now and get perfect later... or along the way."

"If you're not courageous, you're not vulnerable, and you'll never know what's in front of you."

"If you don't risk anything, you risk everything."

TO CONNECT WITH ASHNA

linkedin.com/in/ashna-suri-091a06389

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Inside the vCISO Mind: David Clarke on AI, GDPR, and Real‑World Risk with David Clarke

Fri, 06 Feb 2026 00:00:00 -0000

In this episode, Aakash Suri sits down with David Clarke, a veteran security leader and virtual CISO with experience spanning global trading floors and AI-driven startups. They dig into the reality of building trust in 2026, moving beyond simple compliance to address the messy world of data sprawl. David shares why mapped data flows are the true foundation of business velocity and explains the dangerous accountability gap teams face when integrating AI.

KEY TAKEAWAYS

Data Sprawl vs. Regulation: Regulation like GDPR isn't what slows companies down; it’s data sprawl, unmanaged copies of data across too many systems that kill business velocity.

The AI Accountability Trap: Organizations often believe using vendor AI offloads risk, but under GDPR, the organization not the model or vendor remains fully accountable for every automated decision.

Governance Through Visibility: Building a simple asset register or data map is more valuable than complex policies, especially during a breach, when knowing where the data is is the only thing that matters.

Preparation for Breach Response: Effective breach response requires a clear "escalation process" that involves the C-suite and Board early. Most organizations fail because they wait too long to communicate.

Privacy as a "Shared Language": Success in 2026 requires breaking down silos; privacy, security, legal, and product teams must share a common language to turn privacy from a hurdle into a competitive advantage.

BEST MOMENTS

"It doesn’t take long before that [data management] kind of gets out of hand and it's just in living memory... it's just our own mess."

"MFA on its own now... you can download toolkits to bypass basic MFA. The battleground is getting tougher and tougher."

"AI doesn't let anyone off the hook. You still own the decision, the risk, and the explanation."

"People don't rise to the occasion; they fall to the level of their preparations."

"One second of outage [on a trading network] could cost you $20,000... you don't necessarily have the luxury of saying, 'Hey, can we turn this off?'"

TO CONNECT WITH DAVID

https://www.linkedin.com/in/1davidclarke/

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Inside a Political DPO’s Mind: Labour Party, Voter Data and Life as a Consultant with James Robson

Fri, 30 Jan 2026 00:00:00 -0000

In this fascinating episode, Aakash Suri sits down with James Robson, former Data Protection Officer for the Labour Party, to go behind the curtain of one of the most high-stakes roles in the privacy world. James discusses the delicate intersection of privacy, power, and politics, sharing stories of the "uncomfortable conversations" required when data use clashes with political ambition.

KEY TAKEAWAYS

The Independence of the DPO: Even at the highest political levels, a DPO must remain independent, prioritizing the data rights of the public over the immediate goals of the organization.

Communication is a Core Skill: Technical knowledge is only half the battle; the ability to articulate red lines to senior stakeholders, often through storytelling and empathy, is essential for effective governance.

The Challenge of Volunteer Data: Political parties rely on thousands of volunteers who may not be bound by professional contracts, making app-based data security and training critical for compliance.

Consultancy Myths: Aspiring privacy entrepreneurs often wait too long for perfection. James highlights that you don't need a polished website or a perfect logo to start adding value to clients.

Personal Growth Fuels Professional Success: James attributes his effectiveness to a shift from a "hard-nosed" corporate mindset to an empathetic "growth mindset," largely influenced by his training as a yoga and meditation teacher.

BEST MOMENTS

"You are independent and your responsibility is to the people whose data are on those platforms, not the organization that you're in."

"Data protection is not a defensive role; it’s a protective role... it is a stewardship of everything that’s going on to make sure we’re not going to harm people."

"I’m not about fighting the battles; I’m just about solving the problem."

"The Data Protection Act and UK GDPR are data sharing manifestos... why have them if they’re not enabling you to use data?"

"Visibility is credibility. How you do it is up to you, as long as it aligns with your core values."

TO CONNECT WITH JAMES

http://linkedin.com/in/-james-robson

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

From GDPR to AI: How Privacy Leaders Create Value with Jamal Ahmed

Fri, 30 Jan 2026 00:00:00 -0000

FREE GIVEAWAY INFORMATION: Jamal has provided a discount for all Let’s Talk Privacy listeners up to 20% off any of The Pro Academy courses by using the code: AAKASH10

HERE ARE MORE FREE GIVEAWAYS

8 Day Carrer Accelator Training

International Data Transfer Training

DIYA Resources

In this debut episode, Aakash Suri sits down with Jamal Ahmed, the King of Data Protection, to dismantle the myth that certifications alone make a privacy professional. Jamal shares his journey from tower blocks to the European Commission, explaining why paper-pushing is a career dead-end and how true value lies in operationalising the law.

KEY TAKEAWAYS

Certifications are Vehicles, Not Destinations: A certification like the CIPP/E only gets you in the door; real success comes from your ability to connect with stakeholders and solve practical business problems.

The Five-Stage Career Model: Professionals typically move through five levels: Novice, Practitioner, Expert, Authority, and Thought Leader.

Shift from "No" to "How": Mediocre professionals default to "no" when faced with complexity. World-class leaders find pragmatic ways to achieve business goals while remaining compliant.

Simplification is Power: If you can't explain a privacy concept to an 11-year-old, you don't understand it well enough. Value is found in making the complex "Easy Peasy."

The AI Pivot: In 2026, privacy expertise alone isn't enough. Top-tier roles now demand a deep understanding of AI governance and the ability to bridge the gap between legal requirements and technical teams.

BEST MOMENTS

"Having the certification just gets you into the room. It’s the tax you pay to get to the table. Now you’re there, what makes you special?"

"Too many professionals treat certification as the destination rather than the vehicle."

"If you can't explain it simply enough, you haven't understood it well enough."

"AI isn't going to take your job, but someone who knows how to govern AI definitely will."

"Don't just be smart—be useful. The more useful you are, the more valuable you become to the business."

TO CONNECT WITH JAMAL

https://privacypros.academy/

https://www.linkedin.com/school/privacypros/

https://www.linkedin.com/in/kmjahmed/

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

The Governance Paradox: How Constraints Accelerate Enterprise AI with Brendan Jayagopal

Fri, 30 Jan 2026 00:00:00 -0000

In this episode, Aakash Suri is joined by Brendan Jayagopal, VP of AI Products at Futuri, to dismantle the common misconception that safety and speed are opposing forces in AI adoption. Brendan argues that treating governance as a "bottleneck" or a "retrospective box-ticking exercise" actually slows organizations down and increases risk. Instead, he advocates for governance as infrastructure.

KEY TAKEAWAYS

Dismantling the Speed vs. Safety Myth: Speed and safety are not a trade-off; they are two sides of the same equation. Effective governance allows a company to move faster by providing a clear, safe runway for innovation.

The Three Pillars of AI Governance: To move from "governance as theater" to "governance as infrastructure," organizations must embed compliance directly into product workflows so it becomes seamless and nearly invisible.

Regulatory Ambiguity as an Opportunity: Instead of waiting for regulators to define the rules, organizations should use the current uncertainty to build robust, principled internal frameworks that will eventually serve as a competitive "moat".

AI Literacy is Mandatory: Governance and privacy professionals must evolve to understand the technology deeply to provide qualitative validation rather than just quantitative box-ticking.

Governance as Organizational Memory: Good governance ensures that when key personnel leave, the "why" and "how" behind AI prompts and pipelines remain understood and manageable by the organization.

BEST MOMENTS

"Governance should feel like plumbing: always there, but rarely discussed."

"Regulatory ambiguity is not a blocker... if anything, it's a window of opportunity."

"You can't wait for the regulators to tell you what to do, because they don't know."

"The word 'risk' has a negative connotation, implying you have something to lose. But the other side of risk is upside potential."

"AI is definitely past experimentation. Playtime's over."

TO CONNECT WITH BRENDAN

https://www.linkedin.com/in/brendan-jayagopal

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Hidden Healthcare Privacy Risks: How Clinical Trials Really Protect and Expose Patient Data with Shaun Hastings

Fri, 30 Jan 2026 00:00:00 -0000

In this insightful episode, Aakash Suri is joined by Shaun Hastings, a veteran Quality and Compliance leader in clinical research, to discuss the critical nuances of data protection in healthcare. Moving beyond compliance theater, they explore practical ways to embed privacy into organizational culture, the importance of auditing sub-processors, and why the current regulatory ambiguity is actually a competitive opportunity for forward-thinking organizations.

KEY TAKEAWAYS

Pseudonymization is a Shield, Not a Wall: Coded data lowers risk but does not eliminate it; external factors like social media can allow malicious actors to "triangulate" patient identities.

The Danger of Secondary Use: A significant risk involves vendors using trial data to train their own AI models without proper authorization or oversight.

Audit the Entire Chain: Privacy maturity must extend to sub-processors; if data is transferred across jurisdictions or to subcontractors, the "chain of custody" must be robustly documented.

Visibility is Credibility: Privacy leads and DPOs should be active participants in project meetings and senior management updates rather than being siloed in the background.

The "Pigeon" SAR: Organizations must be prepared to handle Subject Access Requests from any channel, social media, phone, or even a "pigeon" with clear internal workflows to meet legal deadlines.

BEST MOMENTS

"Pseudonymization is effectively data wearing a mask."

"The riskiest data privacy problems often sit in the joints—between sponsors, labs, and cloud tools."

"It’s about switching from compliance theater to cultural embedding."

"Visibility is credibility... we have to share our knowledge and put it out there."

"It's not enough to just say 'computer says no.' You have to understand why and explain it."

TO CONNECT WITH SHAUN

https://www.linkedin.com/in/shaunhastings

TO CONNECT WITH YOUR HOST

https://www.linkedin.com/in/aakashsuri-thoughtleader/

HOST BIO

This Podcast has been brought to you by Disruptive Media. https://disruptivemedia.co.uk/

Let's Talk Privacy

DPDP in Practice: Privacy by Design, Cloud Resilience, and Real-World Data Protection with Anuuj Medirattaa

Gamechanger in AI: Claude & Cowork

Data Armageddon and Trust: Luke Beckley on Fixing Governance Before It’s Too Late with

Bitesize AI Briefings: Last Year, VIBE Coding Changed How the World Built

Are ISO 27001 Certificates Lying to You? Data Privacy, Red Flags, and Recent Deadlines with Jennifer Hirst

Bitesize AI Briefings: OpenAI's CEO Sam Altman's Succession Plan: Handing OpenAI’s CEO Job to an AI!

Career Playbooks for India’s Next‑Gen Privacy/AI Pros with Chetandeep Batra

AI's Impact on the War in Iran

Blockchain as a New Risk Lens with Nav Sandhu

Bitesize - 2025 AI in Review: My Chosen Highlights on DeepSeek, Stargate, and Deepfake Video

AI Governance, GDPR & Going Freelance: Building a Privacy‑First DPO Career in the Age of Data with Yassine Mernit

Beyond Checkboxes on AI, Privacy, and the 10‑Dollar Policy Problem with Eniola Akinkugbe

From Back‑Office to Boardroom: Turning Information Leaders into Influential Personal Brands with Jacqueline Stockwell

My Journey Through My Spouse’s Lens with Ashna Suri

Inside the vCISO Mind: David Clarke on AI, GDPR, and Real‑World Risk with David Clarke

Inside a Political DPO’s Mind: Labour Party, Voter Data and Life as a Consultant with James Robson

From GDPR to AI: How Privacy Leaders Create Value with Jamal Ahmed

The Governance Paradox: How Constraints Accelerate Enterprise AI with Brendan Jayagopal

Hidden Healthcare Privacy Risks: How Clinical Trials Really Protect and Expose Patient Data with Shaun Hastings

From Back‑Office to Boardroom: Turning Information Leaders into Influential Personal Brands with Jacqueline Stockwell