Search for:
Author

Guillermo Cervio

Browsing
Guillermo Cervio is a partner in Baker McKenzie’s Buenos Aires office. With more than 30 years of experience, he is recognized as a foremost practitioner in his field. He founded the IT/C team in Argentina and was the coordinator of the LatAm IT/C team from 2008 to 2017. He is currently a member of the Steering Committee of Baker McKenzie LatAm’s IPTC team.
Guillermo has authored books and articles on legal matters. He has won awards for his book “Derecho de las Telecomunicaciones” (National Academy of Law - Mención de honor, 1998, and Austral University - premio tesina,1997) as well as for the paper he filed in the IX National Congress on Corporate Law (Tucumán, 2004). He has been a professor at the University of Buenos Aires, Austral University, Palermo University, Catholic University and CEMA. In 2003, he was awarded the Folsom fellowship grant by the Center for American and International Law in Dallas.

In the context of the International Data Protection Day, on 26 January 2024, the Agency of Access to Public Information (AAIP, its acronym in Spanish) published their “Recommendations to protect personal data on the internet”. The AAIP provided five recommendations to users of any digital platform that entails the assignment of personal data.

Data is a critical asset in today’s globally connected economy. Rapidly evolving technologies have made it easier than ever for companies to collect, use and transfer data throughout the world. Yet strict data protection, privacy and cybersecurity regulation is evolving rapidly, imposing complex and often inconsistent standards. Our Global Data Privacy & Cybersecurity Handbook is updated annually to help you keep up with the dynamic legal landscape. We provide detailed overviews and allow a comparative perspective of the increasingly complex and sophisticated data privacy and cybersecurity standards in over 50 countries.

The European Commission concluded that personal data transferred from the European Union (EU) to Argentina are adequately protected and, therefore, can continue to flow freely from the EU to Argentina. On 15 January 2024, the Commission published its conclusions regarding the first review of the adequacy decisions adopted — pursuant to Article 25(6) of Directive 95/46/EC — in 1995. In these decisions, the Commission had determined that 11 countries or territories, including Argentina, guaranteed an adequate level of protection of personal data. This allowed data transfers from the EU to these countries.

Following Administrative Decision No. 641/2021 on “Minimum information security requirements for the national public sector,” the AAIP approved its information security policy. The purposes of the policy are to protect the information resources of the AAIP and the technological tools used for their processing; ensure the confidentiality, integrity, availability, legality and reliability of information, and strengthen the adequate implementation of security measures, identifying available resources.

By means of Resolution No. 198/2023, published in the official gazette on 18 October 2023, the Agency of Access to Public Information (AAIP) approved the model contractual clauses included in the Implementation Guide of Model Contractual Clauses for International Personal Data Transfers of the Ibero-American Data Protection Network (MCC and IADPN, respectively).

Through Resolution No. 161/2023, published in the official gazette on 4 September 2023, the Agency for Access to Public Information (AAIP) created the Program for Transparency and Protection of Personal Data in the Use of Artificial Intelligence and entrusted its execution, monitoring and evaluation to the National Directorates of Evaluation of Transparency Policies and Protection of Personal Data.

By means of Resolution No. 1200/2023 published in the official gazette on 22 August 2023, the National Communications Entity (Ente Nacional de Comunicaciones, or ENACOM for its acronym in Spanish) extended the term for mobile service providers to comply with the Regulation for the Collection of Personal Data and Identity Validation of Users of Mobile Services that Hold a Mobile Number, which was approved by Resolution No. 263/2023.

The Data Protection Bill of Law submitted to Congress proposes significant amendments to the current regime and introduces mandatory provisions that are novel to Argentine legislation. For example, it includes express references to the extraterritorial scope of application and changes the traditional approach to the legal basis for the processing of personal data. In this alert, we address some of these changes and novelties.