PrivacyEngine Podcast
Modern Privacy, Made Practical.
Actionable insights for privacy, security, legal, and product teams, turning complex requirements into clear steps across global data protection laws and emerging AI governance.
Get our podcasts on your device
Host
Dr. Maria Moloney
Head of Research
Dr Maria Moloney is a privacy, data protection, and AI governance expert and Head of Research at PrivacyEngine, leading work on privacy risk, AI regulation, and compliance frameworks. She holds a PhD in Information Systems from Trinity College Dublin and has 20+ years’ experience spanning privacy, cybersecurity, and AI policy. A Fulbright Scholar, she serves as Director of the Irish Computer Society and Co-Chair of CEDPO’s AI Working Group, and regularly speaks and publishes on GDPR, the EU AI Act, and related regulation.
Those who design systems shape society, accountability is what keeps them trustworthy.
Co-Host
Katie Birch
Data Protection Legal Specialist
Katie Birch is a CIPP/E certified Data Protection Legal Specialist with an LLM in international law at Privacy Engine. She focuses on turning complex privacy and AI governance requirements into clear, practical guidance for teams who operate across multiple jurisdictions, helping organisations build compliant, trustworthy data practices that scale.
Data protection to me is about respecting individuals fundamental right to privacy, and developing a peace of mind about existing in cyberspace.
All Episodes
Explore every PrivacyEngine Podcast episode.
Browse the full library of practical conversations on privacy operations, data protection laws, and AI governance. Find the topics you need, then press play or dive into the show notes.
UAE Free Zone Data Protection: DIFC & ADGM (Part 2)
Operating in the UAE is not a single-law exercise. In this episode, we break down how the DIFC and ADGM free zone regimes work in practice, why they look and feel GDPR-like, and where the details can still catch organisations out. You will learn how to map which rules apply, what to expect on lawful bases, data subject rights, international transfers, and breach notification timelines, plus what the 2025 DIFC private right of action means for contracts, liability, and cyber readiness.
UAE Data Protection Law: Federal PDPL (Part 1)
In Part 1 of our UAE special, we break down the federal Personal Data Protection Law (PDPL) and why compliance can feel complex in a country with layered privacy regimes. You’ll learn when the PDPL applies, how closely it tracks GDPR concepts, and what to prioritise now. This includes individual rights handling, breach readiness, cross-border transfer safeguards, governance basics, and early signals on AI and automated decision-making. This episode sets the baseline before Part 2, where we move into the DIFC and ADGM free zone frameworks.
Saudi Arabia PDPL Explained (KSA Personal Data Protection Law)
Saudi Arabia’s PDPL is quickly becoming a must-know law for any organisation operating in, or targeting individuals in, the Kingdom. In this episode, we break down what the PDPL requires, how it compares to GDPR, and what teams should prioritise across consent, sensitive data, international transfers, AI profiling, breach response, and enforcement.
What the DPDPA Means for GDPR Businesses: Key Differences
India’s DPDP Act 2023 is now moving into phased enforcement, with key provisions in effect from November 2025. In this episode, Dr. Maria Maloney and Katie Birch break down what DPDP changes compared with GDPR, including consent and legitimate uses, children’s data safeguards, blacklist-style cross-border transfers, and the practical steps GDPR-ready organisations should take next.
Rate Us
Enjoying the PrivacyEngine Podcast? Leave a quick rating.
Ratings help more privacy and compliance professionals find the show. If an episode helped you, a 30-second review on your listening app makes a real difference.