The Data Governance Summit held on May 2, 2025, at UVU Studios in Utah focused on comprehensive legislation regarding data privacy and governance. The session featured discussions led by state privacy auditor Nora Kurzova, who introduced her newly established role following the passage of HB 444 during the recent legislative session.

Kurzova began by addressing the responsibilities of the ombudsman in relation to the data privacy governing board. She clarified that while the ombudsman may raise issues regarding serious violations by entities, she expressed skepticism about the likelihood of a governmental body outright refusing to comply with privacy laws. Instead, she emphasized a collaborative approach to reporting complaints, aiming to provide aggregated information without assigning blame.

The session transitioned into an interactive segment where participants were encouraged to engage using their mobile devices. Kurzawa posed a question regarding the best definition of personal data, highlighting the variety of definitions that exist across different laws in Utah and beyond. She invited attendees to vote on their preferred definition, noting that privacy protection is closely tied to the understanding of personal data.

As the audience participated, Kurzova shared insights into the voting trends, humorously noting that the longest definition often received the most votes. She pointed out that many definitions shared a common theme, ultimately leading to a discussion about the implications of these definitions in the context of privacy laws, including the General Data Protection Regulation (GDPR) from Europe.

The session concluded with Kurzova encouraging ongoing dialogue and feedback from participants, reinforcing her commitment to transparency and collaboration in her role as the state privacy auditor. The discussions underscored the importance of clear definitions and understanding in the evolving landscape of data privacy legislation in Utah.