Mexicos New Data Privacy Regulations What You Need to Know

On March 21, 2025, Mexico’s Federal Law for the Protection of Personal Data Held by Private Parties (LFPDPPP) replaced the 2010 framework, bringing the country’s data protection regime in line with global standards. The reform centralizes oversight under the Secretariat of Anti-Corruption and Good Governance, expands key definitions, strengthens consent requirements, and updates privacy notice obligations. It also reinforces ARCO rights, mandates data-retention schedules, and tightens confidentiality obligations for all data handlers.

Continue reading

Landmark-Privacy-Law-Enforcement-Settlement-Highlights-Costs-of-Non-Compliance

n a landmark enforcement action under the California Consumer Privacy Act (CCPA), the California Privacy Protection Agency (CPPA) fined American Honda Motor Co., Inc. $632,500 for multiple violations—despite the infractions representing a small portion of consumer interactions. The settlement underscores the CPPA’s strict stance on compliance, requiring Honda to redesign its user privacy interface, certify changes, and train staff. This case signals that CCPA enforcement is real—and costly for non-compliance.

Continue reading

You May Be a Data Broker and California Is Watching

The California Delete Act (CDA) enhances consumer privacy by imposing strict requirements on data brokers. Recent enforcement by the California Privacy Protection Agency (CPPA) emphasizes the need for compliance. Businesses should urgently determine if they must register as data brokers and implement necessary operational measures to adhere to CDA regulations.

Continue reading