Most businesses still think “privacy compliance” is a big-company problem—but the rules (and risks) say otherwise. In this episode, Amy L. Baddley, privacy and cybersecurity associate at Varnum LLP, joins Curtis and Tom to unpack what data privacy really means for every business owner. From cookie banners and compliance thresholds to the myths around “template” privacy policies, this episode is your plain-English primer on doing privacy right—before regulators, lawsuits, or “privacy chasers” come knocking.

If you’ve ever wondered whether your website’s cookie notice is enough… this one’s for you.

N.B.:

• Learn more at VarnumLaw.com.

• Connect with Amy on LinkedIn.

Takeaways:

• Almost every website collects personal data—even IP addresses and analytics count.

• Cookie banners must actually work; “fake” ones can expose you to lawsuits.

• Avoid dark patterns—don’t make it easier to accept cookies than reject them.

• Privacy laws now exist in 19+ U.S. states, plus GDPR and Canada’s frameworks.

• Compliance isn’t optional: lawsuits and $20K-per-user settlements are real risks.

• Privacy compliance starts with data mapping—know what data you collect, where it goes, and who touches it.

• Privacy policies must match your real data practices; templates can increase risk.

• “Privacy by design” is cheaper and easier than fixing it later.

• Partnering with privacy counsel early protects your brand and unlocks new opportunities (many large vendors now require compliance).

• Consumers expect transparency—it’s not just legal hygiene, it’s a trust advantage.

Find and Follow:

• Find all episodes at bullhornsbullseyes.com.

• Follow the show on LinkedIn!

• Learn more about Collideascope and Creative Mill at their respective websites.

• Connect with Curtis and Tom on LinkedIn.

• Check out our newsletter, Amplify and Aim!