Alston & Bird Privacy, Cyber & Data Strategy Blog

Maki DePalo

Avatar photo

About Maki DePalo

Maki DePalo is a partner with Alston & Bird’s Privacy, Cyber & Data Strategy Team. She devotes her practice to clients' initiatives in technology and corporate transactions encompassing intellectual property licensing, strategic outsourcing, Internet-based marketing and advertising, data privacy and security, governance and compliance.

[Read Bio]

U.S. Department of Commerce Announces the Establishment of a Global CBPR Forum

By and

On April 21, 2022, Canada, Japan, the Republic of Korea, the Philippines, Singapore, Chinese Taipei, and the United States of America issued a  Global Cross-Border Privacy Rules Declaration announcing the establishment of the Global Cross-Border Privacy Rules Forum (“Global CBPR Forum”).  U.S. Secretary of Commerce Gina M. Raimondo, in her statement, described the establishment of […]

Japan’s Personal Information Protection Committee releases guidance on contact tracing mobile apps to combat COVID-19

By

On May 1, the Personal Information Protection Committee in Japan (PPC) released guidance on the use of contact tracing mobile apps (Apps) as one of the mechanisms to combat the spread of COVID-19 and highlighted five essential consideration points.  Specifically, the PPC recommends that all “personal information handling business operators” carefully consider, and disclose their […]

EU and Japan Publish a Joint Release on Their Mutual Adequacy Decisions

By

On January 23, 2019, the Personal Information Protection Commission of Japan (the “PPC”) and the European Commission (the “Commission”) jointly announced the adoption of the decisions recognizing each other’s personal data protection systems as equivalent. The Commission launched the process leading to the adoption of the adequacy decision in September 2018 and successfully completed the […]

Are You Ready for Canada’s New Privacy Breach Rules?

By

Mandatory privacy breach notification, reporting and record-keeping obligations under Canada’s federal data protection law called the Personal Information Protection and Electronic Documents Act (PIPEDA) will come into force as of November 1, 2018. Earlier this year, the Canadian government published new privacy-related obligations under PIPEDA.  PIPEDA applies to private-sector organizations and sets the ground rules […]

Japan and EU agree on Terms of Reciprocal Adequacy for Data Transfers

By

On July 17, the European Commission (the “Commission”) announced that the European Union and Japan successfully concluded talks on reciprocal adequacy and agreed to recognize each other’s data protection systems as equivalent.  In its press release, the Commission explains that this adequacy agreement will create “the world’s largest area of safe transfers of data based […]