Rachel Harris

Text Embeddings Reveal (Almost) As Much As Text How much private information do text embeddings reveal about the original text? We investigate the problem of embedding \textit{inversion}, reconstructing the full text represented in dense text embed...

What if the number codes AI uses to “understand” your text… could be reversed?

A 2023 study showed embeddings can leak the exact sentence, even personal info.

Think vault? It's invisible ink.

🔗 substack.com/@harrisrache...
🔬https://arxiv.org/abs/2310.06816 #AIprivacy #VectorDB #RAG #AIsecurity

Don’t take data ownership for granted when it comes to cloud vendors. #LegalTech cloud vendors recognize that law firms own there data. Consumer cloud apps often claim ownership/license of uploaded data. - @larryport #ABATECHSHOW

Rewriting Compliance, AI’s Legal Challenge, and the Future of SaaS Legal Teams --privAIcy insights Newsletter #008 🧭 The legal landscape for SaaS is shifting under our feet. From redefining compliance to AI’s role in governance, here’s what I took away from The L Suite’s SaaS Offsite.

🚀 AI is reshaping legal teams, security questionnaires are out of control, and SaaS governance is evolving fast.

Here’s what in-house lawyers need to know to stay ahead. ⬇️

🔗 open.substack.com/pub/privaicy...

#AIGovernance #AILaw #SaaS #TechLawyer #InHouseCounsel

NIST Selects HQC as Fifth Algorithm for Post-Quantum Encryption The new algorithm will serve as a backup for the general encryption needed to protect data from quantum computers developed in the future

🚨 #Quantum computers could break today's encryption— #NIST just picked HQC to help defend against that future.

🔹 Why? Diversifies cryptographic math to prevent single-point failures
🔹 Biz should prep for quantum-safe migration now.

#EmergingTech #InfoSec

More: 🔗 www.nist.gov/news-events/...

Tech Lawyers: Let's Stop Clinging to 'SaaS Playbooks' in AI Contract Negotiations Are we negotiating AI contracts like it's 2010?

Tech lawyers, it’s time to rethink AI contracts. Clinging to outdated “SaaS standard” terms isn’t just ineffective—it’s holding back clients, companies, and AI governance. Let’s do better. 👇 #AI #LegalTech #Contracts #AIgovernance

open.substack.com/pub/privaicy...

Gearing up to speak on #AI at a conference for General Counsels of tech companies (growth, late-stage, public). Brainstorming topics & hoping to avoid a boilerplate “Here’s X law” chat.

What’s one thing you WISH #techlawyers actually knew, learned, or discussed about #artificialintelligence?

Yes - and they revert on new updates, so I schedule periodic reminders to go in and re-configure my preferences. #privacymatters

Quantum Computing, AI as Lawyers, and Biometric Nights -- Oh My! privAIcy insights Newsletter #007

The future of law, security, and privacy is moving faster than regulators can keep up. Can we adapt before quantum cracks encryption and AI redefines legal work? Dive in & let’s discuss.

🔗: open.substack.com/pub/privaicy...

#AIandLaw #QuantumComputing #PrivacyandSecurity

Startups Need Agile AI Governance Your compass through the maze of AI, privacy, legal, and security compliance 🧭

AI governance is having a moment—but are companies focusing on what matters? 🚨

New titles, AI councils, big buzz. But real impact comes from integrating #ResponsibleAI from day one—not just adding labels.

Are you doing what you say? 👇
🔗 privaicyinsights.substack.com/p/startups-n...

Microsoft’s Majorana 1 chip carves new path for quantum computing - Source Majorana 1, the first quantum chip powered by a new Topological Core architecture

Microsoft's Majorana 1 chip is a big leap toward scalable quantum computing. Huge potential—but also big questions. How do we regulate + secure? Cryptography, accountability, geopolitics…the stakes are high.

news.microsoft.com/source/featu...

#QuantumComputing #AIRegulation #CyberSecurity

Greg Raiten on LinkedIn: Startups love talking about “technical debt” - the engineering shortcuts… Startups love talking about “technical debt” - the engineering shortcuts you take to move fast, knowing you’ll have to clean them up later. But there’s a twin…

Startups focus on #techdebt but legal debt is just as real. Raiten’s post highlights how ignoring legal foundations (contracts, IP, compliance) can create big headaches later. Like bad code, #legaldebt compounds over time.

www.linkedin.com/posts/gregra...

#InHouseCounsel #Startups #RiskManagement

Privacy on Trial: LinkedIn, AI, and the Future of Data Ethics - privAIcy insights Newsletter #005 Your compass through the maze of AI, privacy, and security compliance 🧭

Can LinkedIn use your private messages to train AI? 🤔 I dive into a recent lawsuit looking at that question, what it means for AI governance, user trust, and the evolving balance of ethics in tech.

📝 Read more: privaicyinsights.substack.com/p/privacy-on...

#AI #Privacy #BigData

Most SaaS companies treat privacy like a legal hurdle, not a competitive advantage. But the ones that bake privacy into product design aren’t just avoiding lawsuits—they’re building trust & differentiation.

Compliance is the floor. Privacy-by-design is the ceiling. #privacy #dataprivacy #compliance

2024 Healthcare Data Breach Report Large healthcare data breaches continue to be reported to the Department of Health and Human Services (HHS) Office for Civil Rights (OCR) in high numbers. There was a slight fall in the number of heal...

Incredibly helpful HIPAA report on 2024 from the HIPAA Journal. Bottom line is that the average size of data breaches is at a 9 year high. www.hipaajournal.com/2024-healthc...

privAIcy insights | Rachel Harris | Substack Your compass through the maze of AI, privacy, security, and compliance complexities. Click to read privAIcy insights, by Rachel Harris, a Substack publication. Launched 10 months ago.

Excited to dive deeper into AI, privacy, security, and compliance? My newsletter explores the intersection of law and technology, helping make sense of the complexities. Subscribe: privaicyinsights.substack.com

“Scraping has evaded a reckoning with privacy law largely because scrapers act as if all publicly available data were free for the taking. But privacy law is currently conflicted about publicly available data.” - from Solove & Hartzog, "The Great Scrape" papers.ssrn.com/sol3/papers....

FTC bans two data brokers from collecting and selling Americans’ sensitive location data US-based Gravy Analytics and Mobilewalla must also delete historic data collected on millions of Americans. © 2024 TechCrunch. All rights reserved. For personal use only.

FTC bans two data brokers from collecting and selling Americans’ sensitive location data

Visual of balancing legal thinking with engineering thinking captioned “bridging legal + technical minds for AI”. Generated using Napkin.ai

AI and emerging tech require lawyers who think like engineers and engineers who think like lawyers. Building that bridge isn’t optional—it’s essential for responsible AI progress. #AIInnovation #AI #lawyers #lawandtech #emergingtech #AIregulation #responsibleAI #genAI

📲 iOS 18 is officially out❕Here are 3 settings you may want to TURN OFF on your iPhone after updating 🚫 1️⃣. Improve Search 2️⃣. Shared With You 3️⃣. Screen Sharing Allow Notifications 👉 FOLLOW me fo... TikTok video by Alex EZ Tech Tips

Sometimes, #TikTok surprises me. Like this video by Alex EZ Tech Tips—breaking down Apple’s iOS18 updates & the settings you might want to turn off* to better protect your privacy.

*I had to turn them off (U.S.). You? 🤔

🎥: www.tiktok.com/@alexeztecht...

#Privacy #DataProtection #TechTips #iOS18

California CPPA Issues Notice of Proposed Rulemaking California: The CPPA moved draft regulations to rulemaking. Meanwhile, a CA judge has moved a VPPA case to arbitration based on terms of use.

More out of California this week: the CPPA has initiated formal rulemaking for significant new privacy regulations and a California court ruling on a VPPA case has reinforced the importance of maintaining robust consent documentation.

Read this week's newsletter: bit.ly/3Zmqkt9

#privacysky

Bluesky won't train AI on your data. But the terms of service of its API don't restrict everyone else from doing so, an odd outcome. (But one we are also seeing in some jurisdictions where scraping is ok under Legitimate Interest but not a company using its own user data)

Cleo Capital launches cybersecurity accelerator to help undo the ‘crushing burden’ of online threats Cleo Capital, the early-stage venture fund that counts the AI firm Groq, fintech company Ellevest, and fashion brand Hill House as investments, has announced the launch of a new cybersecurity accelerator. The program is looking for pre-seed and seed…

Cleo Capital launches cybersecurity accelerator to help undo the ‘crushing burden’ of online threats

Deepfake attacks occur every five minutes - Help Net Security With the rise in AI-assisted fraud, bad actors are now able to leverage more sophisticated attacks on documents.

Deepfake attacks occur every five minutes www.helpnetsecurity.com/2024/11/22/a... #infosec