Maki DePalo

About Maki DePalo

Maki DePalo is a partner with Alston & Bird’s Privacy, Cyber & Data Strategy Team. She devotes her practice to clients' initiatives in technology and corporate transactions encompassing intellectual property licensing, strategic outsourcing, Internet-based marketing and advertising, data privacy and security, governance and compliance.

[Read Bio]

Oregon Becomes the Fourth State to Enact a Data Broker Law

August 11, 2023 By Maki DePalo and Hyun Jai Oh

Oregon Governor Tina Kotek signed into law the Bill Relating to Registration of Business Entities that Qualify as Data Brokers (HB 2052) (the “Act”) on July 27, 2023. Effective January 1, 2024, the Act will require data brokers to annually register with the Oregon Department of Consumer and Business Services (the “Department”). The Act makes […]

FTC Seeks Comments on a New Verifiable Parental Consent Mechanism Under COPPA

July 24, 2023 By Kathleen Benway, Maki DePalo and Hyun Jai Oh

On July 19, 2023, the Federal Trade Commission (the “FTC”) announced that it is seeking comment on an application for a new verifiable parental consent mechanism under the Children’s Online Privacy Protection Act (“COPPA”). The application, submitted jointly by the Entertainment Software Rating Board, Yoti, and SuperAwesome (collectively, the “Applicants”), requests the FTC to approve […]

U.S. Department of Commerce Announces the Establishment of a Global CBPR Forum

April 25, 2022 By Maki DePalo and Yin Zhao

On April 21, 2022, Canada, Japan, the Republic of Korea, the Philippines, Singapore, Chinese Taipei, and the United States of America issued a Global Cross-Border Privacy Rules Declaration announcing the establishment of the Global Cross-Border Privacy Rules Forum (“Global CBPR Forum”). U.S. Secretary of Commerce Gina M. Raimondo, in her statement, described the establishment of […]

Japan’s Personal Information Protection Committee releases guidance on contact tracing mobile apps to combat COVID-19

May 4, 2020 By Maki DePalo

On May 1, the Personal Information Protection Committee in Japan (PPC) released guidance on the use of contact tracing mobile apps (Apps) as one of the mechanisms to combat the spread of COVID-19 and highlighted five essential consideration points. Specifically, the PPC recommends that all “personal information handling business operators” carefully consider, and disclose their […]

EU and Japan Publish a Joint Release on Their Mutual Adequacy Decisions

January 23, 2019 By Maki DePalo

On January 23, 2019, the Personal Information Protection Commission of Japan (the “PPC”) and the European Commission (the “Commission”) jointly announced the adoption of the decisions recognizing each other’s personal data protection systems as equivalent. The Commission launched the process leading to the adoption of the adequacy decision in September 2018 and successfully completed the […]