As the regulatory landscape rapidly evolves with 19 states enacting data privacy laws, the digital advertising industry continues to balance complying with the new requirements under each state privacy law with enhancing the scalability and efficiency of their compliance program.
The IAB Legal Affairs Council seeks to improve clarity and consensus around the application of state privacy laws to the digital advertising industry. It recently surveyed industry participants across publishers, sell-side and buy-side ad tech companies, agencies, brands, and law firms regarding the implementation of the new state privacy laws, as well as best practices. It posed questions on a wide range of critical topics and practices, including sensitive personal information, data clean rooms, data minimization, secondary use limitation, vendor due diligence, and data de-identification. This webinar will discuss the survey results.
Max Anderson is a seasoned product executive with a proven track record of bringing successful technology products to market in the consumer privacy, data management, and marketing space.
Prior to Ketch, Max was the Director of Product Management at Krux. After joining Salesforce as part of the Krux acquisition, Max ran data privacy and consumer identity products at Salesforce, including the rollout of their industry-leading GDPR solution set. Prior to Krux, Max was a Product Manager at IPG Mediabrands, where he was responsible for multiple successful advertising measurement products. Max holds a BS in Chinese Literature from the University of Colorado, where he graduated Phi Beta Kappa with honors.
Combining deep legal knowledge, technical acumen, and extensive government-side experience, Aaron Burstein helps clients prevent, address, and resolve complex privacy, data security, and consumer protection law problems.
Aaron is exceptionally well-versed in the evolving laws and regulations governing these matters not only because they are the focus of his practice but also because he was deeply involved in the policymaking process that formed the foundation of the current privacy and security legal landscape.
Aaron provides practical, insightful counsel on privacy, information security, and marketing laws and best practices, including compliance with federal and state laws throughout the United States.
As statutes such as the California Consumer Privacy Act present novel compliance challenges for consumer-facing companies and those supporting their marketing and advertising efforts, Aaron helps clients evolve their business practices to manage risk and meet new obligations.
Before entering private practice, Aaron served as an attorney in the FTC’s Division of Privacy and Identity Protection and as a senior legal advisor to Commissioner Julie Brill. As an advisor to Commissioner Brill, Aaron provided legal and policy advice on U.S. and international privacy and data protection issues, rulemaking, and enforcement actions involving nearly every area of the FTC’s consumer protection authority.
Aaron’s government experience extends over nearly a decade beyond his work at the FTC. Before joining the FTC, Aaron served as a policy adviser at the National Telecommunications and Information Administration, where he was the principal drafter of the Department of Commerce’s consumer privacy “green paper” and the White House’s Consumer Privacy Bill of Rights report. He also served as Director for Privacy and Civil Liberties in the National Security Council’s Cybersecurity Directorate.
Following law school, Aaron worked as a trial attorney in the Antitrust Division of the Department of Justice and was a research fellow at the University of California, Berkeley, School of Law and School of Information.
Andrew is an associate in the Data Strategy, Privacy & Security Group. He represents clients complying with privacy, security, artificial intelligence and advertising laws and responding to state regulatory enforcement inquiries.
Previously, Andrew served as a Westin Research Fellow at the IAPP, where he provided actionable research and insights on regulatory enforcement, adtech compliance, and legislative developments in privacy and AI. He analyzed FTC and state enforcement actions while researching and writing on California privacy law, the EU GDPR and AI Act, and children’s privacy. He has spoken at conferences and industry events on U.S. privacy law developments.
Andrew clerked at the California Privacy Protection Agency, where he worked closely on the California Privacy Rights Act rulemaking package. He also researched and drafted memoranda on the CCPA employee, B2B, and financial personal information exemptions.
He currently serves as Co-Chair of the IAPP KnowledgeNet Los Angeles Chapter. Andrew is admitted to practice in California.
Arlene recently served as Assistant General Counsel and Chief Privacy Officer at Lowe’s Companies Inc., a fortune 40 company in the home improvement retail industry. At Lowe’s, she established and oversaw the Lowe’s privacy program, led a cross-functional team to operationalize privacy requirements, and advised on complex data privacy regulatory issues to enable the company’s technology transformation. During her decade-long experience with Lowe’s, she has also covered regulatory compliance, ethics, antitrust, international trade, commercial and governance issues in both the U.S. and overseas operations. She holds CIPP/US, CIPP/C, CIPM and PLS certifications. Arlene received her J.D. from Wake Forest University School of Law, LL.M from University of Southern California, and LL.B. from Nanjing University.
