Mauricio Paez

Mauricio Paez

Jones Day

Contact

Readers' Choice Awards

Cybersecurity
Cybersecurity
Cybersecurity
View Bio
RSS

Latest Posts › Data Privacy

Share:

NIST Updates Its Privacy Framework to Address AI

The National Institute of Standards and Technology ("NIST") recently updated its 2020 Privacy Framework 1.0 to include artificial intelligence ("AI") risk management....more

5/12/2025  /  Artificial Intelligence , Data Privacy , Innovative Technology , Machine Learning , NIST , Privacy Framework , Risk Management

FTC Finalizes Amendments to the Children's Online Privacy Protection Act Rule

On April 22, 2025, the Federal Trade Commission ("FTC") published the finalized amendments to the Children's Online Privacy Protection Act ("COPPA") Rule (the "Rule"), marking the first major update since 2013....more

5/9/2025  /  COPPA , Data Privacy , Federal Trade Commission (FTC) , FERPA , Final Rules , First Amendment , New Regulations , NPRM , Online Safety for Children , Parental Consent , Personal Information , Regulatory Requirements

Understanding DORA: Digital Operational Resilience Act Now in Effect for Financial Entities and ICT Service Providers

DORA, the first EU regulation designed to establish a unified and robust digital resilience standard for the financial sector, becomes directly applicable on January 17, 2025, introducing significant penalties and...more

1/17/2025  /  Compliance , Cybersecurity , Data Privacy , Data Protection , Digital Operational Resilience Act (DORA) , EU , Financial Institutions , Financial Services Industry , Regulatory Requirements , Risk Management

New York Imposes Stringent Cybersecurity and Cyber Incident Reporting Obligations on Hospitals

New York recently passed new cybersecurity regulations for hospitals licensed in New York to enhance patient safety and cybersecurity....more

11/7/2024  /  Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare Facilities , Hospitals , Information Technology , New Legislation , New York , Personally Identifiable Information , PHI , Regulatory Reform

First Tranche of Australia's Much Anticipated Privacy Law Reforms Revealed

The first wave of Australia's expansive privacy law reforms has been introduced into Federal Parliament in the Privacy and Other Legislation Amendment Bill 2024 (Cth) ("Bill")....more

10/29/2024  /  Australia , Cybersecurity , Damages , Data Breach , Data Privacy , Data Protection , Data Security , Invasion of Privacy , Personally Identifiable Information , Proposed Regulation , Regulatory Agenda , Regulatory Reform

Brazil Amps Up Enforcement of Data Protection Law

Actions in the last six months of the Brazilian National Data Protection Authority (“ANPD”) suggest that it intends to aggressively enforce the Brazilian Data Protection Law (“LGPD”). The LGPD applies to any entity that...more

9/23/2024  /  Brazil , Consumer Privacy Rights , Data Breach , Data Controller , Data Privacy , Data Protection , Data Security , International Data Transfers , Personal Data , Personally Identifiable Information , Sensitive Personal Information

U.S. District Court Invalidates HHS Guidance Overreading HIPAA's Application to Online Technologies

On June 20, 2024, a U.S. federal district court held, in a suit brought by Jones Day, that the Department of Health and Human Services ("HHS") had misapplied the Health Insurance Portability and Accountability Act ("HIPAA")...more

8/2/2024  /  Confidential Information , Covered Entities , Data Privacy , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Privacy Rule , Medical Records , New Guidance , PHI

Rhode Island Continues State-Level Adoption of Comprehensive Data Privacy Laws

Rhode Island is the latest state to adopt a comprehensive data privacy law, titled the Data Transparency and Privacy Protection Act....more

7/26/2024  /  Data Collection , Data Privacy , Data Protection , Data Security , Innovative Technology , Personal Data , Personal Information , Rhode Island , State and Local Government , State Privacy Laws

California Privacy Protection Agency Publishes Enforcement Advisory on Data Minimization

California's privacy enforcement agency has published crucial data minimization guidance for businesses....more

5/14/2024  /  California , California Consumer Privacy Act (CCPA) , California Privacy Protection Agency (CPPA) , Cybersecurity , Data Privacy , Data Protection , Personal Information

New State Health Privacy Laws—Moving Beyond HIPAA and Recasting Consumer Health Data Rights?

New, first-of-their-kind consumer health data privacy laws in Washington and Nevada are designed to provide state-level protections for personal health data not covered by the Health Insurance Portability and Accountability...more

4/4/2024  /  Data Privacy , Data Protection , Gramm-Leach-Blilely Act , Health Care Providers , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , Popular , State Data Privacy Laws , State Privacy Laws

California and FTC Announce Enforcement Actions Involving the Sale of Personal Information

In two back-to-back announcements, California and the FTC reemphasized their enforcement efforts related to the sale of personal information....more

3/14/2024  /  California , California Consumer Privacy Act (CCPA) , CalOPPA , Data Privacy , Data Selling , DoorDash , Enforcement Actions , Federal Trade Commission (FTC) , Mobile Apps , Personal Information , Privacy Concerns , State and Local Government , State Attorneys General

NIST Extends its Cybersecurity Framework to Cover Evolving Threats and Governance

The National Institute of Standards and Technology ("NIST") released a significant update to its framework, expanding its scope and reach to cover a broader audience and evolving cybersecurity risks and management issues....more

3/8/2024  /  Cyber Attacks , Cyber Threats , Cybersecurity , Data Privacy , Data Protection , Data Security , NIST , Popular , Risk Management

California Proposes CCPA Amendments to Further Protect Children's Privacy

Proposed amendments to the California Consumer Privacy Act would require businesses to obtain opt-in consent prior to collecting, selling, sharing, using, or disclosing a minor's personal information....more

3/5/2024  /  California , California Consumer Privacy Act (CCPA) , Consumer Privacy Rights , Cybersecurity , Data Collection , Data Privacy , Data Protection , Minor Children , Personal Data

HHS Releases Cybersecurity Performance Goals to Enhance Cybersecurity for Health Care and Public Health Sectors

The Department of Health and Human Services ("HHS") has released voluntary cybersecurity performance goals for the health care and public health sectors, which outline an increasingly standardized regulatory approach and...more

2/19/2024  /  Cyber Attacks , Cybersecurity , Data Breach , Data Privacy , Data Protection , Department of Health and Human Services (HHS) , Health Care Providers , Healthcare , Popular , Proposed Regulation , Public Health

HHS Announces Upcoming Federal Strategies to Enhance Cybersecurity for Health Care and Public Health Sectors

The Department of Health and Human Services ("HHS") has released a concept paper outlining its new cybersecurity strategies for the health care sector, identifying cybersecurity priorities, potential future regulations and...more

1/12/2024  /  Centers for Medicare & Medicaid Services (CMS) , Cybersecurity , Data Privacy , Data Protection , Data Security , Department of Health and Human Services (HHS) , Federal Trade Commission (FTC) , Health Insurance Portability and Accountability Act (HIPAA) , Healthcare , OCR , Popular , Proposed Rules , Public Health , Regulatory Requirements , Risk Mitigation

FTC Seeks to Strengthen Privacy Protections of Children Online

On December 20, 2023, the Federal Trade Commission ("FTC") announced a Notice of Proposed Rulemaking ("NPRM") to revise the Children's Online Privacy Protection Act ("COPPA") Rule to reduce the amount of information...more

12/28/2023  /  Comment Period , COPPA , Cybersecurity , Data Privacy , Data Protection , Data Security , Enforcement Authority , Federal Trade Commission (FTC) , Notice of Proposed Rulemaking (NOPR) , Online Platforms , Online Safety for Children , Personal Information , Regulatory Agenda , Social Media

HHS Enters Into First-Ever Ransomware Resolution Agreement and Corrective Action Plan

The U.S. Department of Health and Human Services ("HHS") Office of Civil Rights ("OCR") has entered into its first settlement of potential Health Insurance Portability and Accountability Act ("HIPAA") violations arising out...more

12/6/2023  /  Cybersecurity , Data Breach , Data Privacy , Data Protection , Data Security , Department of Health and Human Services (HHS) , Electronic Protected Health Information (ePHI) , Health Insurance Portability and Accountability Act (HIPAA) , HIPAA Violations , Hospitals , Life Sciences , OCR , Ransomware

With the Delete Act, California Enacts Another Groundbreaking Privacy Law

The Situation: California has enacted a groundbreaking new privacy law aimed at data brokers—entities that sell information about consumers with whom they do not have a direct relationship. Under the Delete Act (SB 362), data...more

11/7/2023  /  California , California Privacy Protection Agency (CPPA) , Consumer Privacy Rights , Data Brokers , Data Collection , Data Privacy , Data Protection , Data Sellers , New Regulations , Personal Information , Privacy Laws , Regulatory Requirements

President Biden Issues Executive Order on "Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence"

On October 30, 2023, President Biden signed a first-of-its-kind executive order entitled, "Safe, Secure, and Trustworthy Development and Use of Artificial Intelligence" ("AI")....more

11/1/2023  /  Algorithms , Artificial Intelligence , Biden Administration , Cybersecurity , Data Privacy , Data Protection , Department of Health and Human Services (HHS) , Executive Orders , Machine Learning , Regulatory Reform , Security Standards

Delaware Becomes 12th State to Enact a Comprehensive Data Privacy Law

Delaware is the latest state to enact a comprehensive data privacy law, which creates unique compliance challenges and risks for companies....more

10/12/2023  /  Consumer Privacy Rights , Data Collection , Data Controller , Data Privacy , Delaware , New Legislation , Personal Data , Regulatory Reform , State Data Privacy Laws

The Consumer Financial Protection Bureau Announces Sweeping Rulemaking for Companies That Collect and Furnish Personal Data

On August 15, 2023, the Consumer Financial Protection Bureau ("CFPB") announced it was launching a rulemaking aimed at subjecting any company or entity that collects and sells consumer data to the Fair Credit Reporting Act...more

8/28/2023  /  Consumer Financial Protection Bureau (CFPB) , Consumer Reporting Agencies , Consumer Reports , Cybersecurity , Data Brokers , Data Collection , Data Privacy , Data Protection , Fair Credit Reporting Act (FCRA) , Financial Services Industry , Personal Data , Popular , Rulemaking Process

California Privacy Regime Secures Unprecedented Adequacy Recognition from Dubai

California is the first U.S. state to secure an adequacy decision from the Dubai International Financial Center Authority....more

8/23/2023  /  Adequacy Requirement , California , California Consumer Privacy Act (CCPA) , California Privacy Rights Act (CPRA) , Consumer Privacy Rights , Data Collection , Data Privacy , Data Protection , Dubai , Personal Data

Oregon Becomes 11th State to Enact a Comprehensive Data Privacy Law

On July 18, 2023, Oregon Governor Tina Kotek signed Senate Bill 619, referred to as the "Oregon Consumer Privacy Act" ("OCPA" or "the Act"), making Oregon the 11th state to enact a comprehensive data privacy law....more

8/23/2023  /  Consumer Privacy Rights , Data Privacy , Data Protection , Data Security , New Legislation , Oregon , Personal Data , Popular , State Data Privacy Laws

Generative AI End-User License Agreements: What Users Need to Know

In Short - The Background: The prevalence of generative artificial intelligence ("GenAI") is rapidly expanding, providing vast opportunities for efficiency and innovation, while also creating new risks....more

8/7/2023  /  Algorithms , Artificial Intelligence , Confidentiality Agreements , Data Privacy , End-Users , EULA , Innovation , Liability , License Agreements , Machine Learning , Popular

Leading Technology Companies Agree to White House's AI Safeguards

On July 21, 2023, the White House announced that seven leading technology companies—Amazon, Anthropic, Google, Inflection, Meta, Microsoft, and OpenAI—voluntarily committed to mitigating the risks posed by artificial...more

7/25/2023  /  Algorithms , Artificial Intelligence , Biden Administration , Cybersecurity , Data Privacy , Data Protection , Data Security , Innovative Technology , Machine Learning , Regulatory Agenda , Regulatory Oversight , Risk Mitigation
55 Results
 / 
View per page
Page: of 3
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide