Photo of Jorge Ortiz

Jorge Ortiz

Jorge Ortiz is an associate in the firm’s Washington, DC office and a member of the Data Privacy and Cybersecurity and the Technology and Communications Regulation Practice Groups.

Jorge advises clients on a broad range of privacy and cybersecurity issues, including topics related to privacy policies and compliance obligations under U.S. state privacy regulations like the California Consumer Privacy Act.

Contact:Read more about Jorge OrtizEmail

Today, the Federal Communications Commission (“FCC”) released the final text of a Notice of Proposed Rulemaking (“NPRM”) aimed at identifying FCC regulated entities that are controlled by a “foreign adversary.”

This development, along with a separate action recently taken by the FCC to adopt new rules that prohibit the use of test labs or telecommunication certification bodies located in certain jurisdictions outside the U.S., reflect a continued and growing focus by the FCC on national security, particularly with respect to foreign ownership.

The NPRM proposes to, among other things:

  • Define a “foreign adversary” as “any foreign government or foreign non-government person determined by the Secretary [of Commerce] to have engaged in a long-term pattern or serious instances of conduct significantly adverse to the national security of the United States or security and safety of United States persons.”

Continue Reading FCC Looks to Identify Telecom Investments by Foreign Adversaries

This quarterly update highlights key legislative, regulatory, and litigation developments in the second quarter of 2024 related to artificial intelligence (“AI”), connected and automated vehicles (“CAVs”), and data privacy and cybersecurity. 

I.       Artificial Intelligence

Federal Legislative Developments

  • Impact Assessments: The American Privacy Rights Act of 2024 (H.R. 8818, hereinafter “APRA”) was formally introduced in the House by Representative Cathy McMorris Rodgers (R-WA) on June 25, 2024.  Notably, while previous drafts of the APRA, including the May 21 revised draft, would have required algorithm impact assessments, the introduced version no longer has the “Civil Rights and Algorithms” section that contained these requirements.
  • Disclosures: In April, Representative Adam Schiff (D-CA) introduced the Generative AI Copyright Disclosure Act of 2024 (H.R. 7913).  The Act would require persons that create a training dataset that is used to build a generative AI system to provide notice to the Register of Copyrights containing a “sufficiently detailed summary” of any copyrighted works used in the training dataset and the URL for such training dataset, if the dataset is publicly available.  The Act would require the Register to issue regulations to implement the notice requirements and to maintain a publicly available online database that contains each notice filed.
  • Public Awareness and Toolkits: Certain legislative proposals focused on increasing public awareness of AI and its benefits and risks.  For example, Senator Todd Young (R-IN) introduced the Artificial Intelligence Public Awareness and Education Campaign Act (S. 4596), which would require the Secretary of Commerce, in coordination with other agencies, to carry out a public awareness campaign that provides information regarding the benefits and risks of AI in the daily lives of individuals.  Senator Edward Markey (D-MA) introduced the Social Media and AI Resiliency Toolkits in Schools Act (S. 4614), which would require the Department of Education and the federal Department of Health and Human Services to develop toolkits to inform students, educators, parents, and others on how AI and social media may impact student mental health.

Continue Reading U.S. Tech Legislative, Regulatory & Litigation Update – Second Quarter 2024

On Thursday, July 25, the Federal Communications Commission (FCC) released a Notice of Proposed Rulemaking (NPRM) proposing new requirements for radio and television broadcasters and certain other licensees that air political ads containing content created using artificial intelligence (AI).  The NPRM was approved on a 3-2 party-line vote and comes in the wake of an announcement made by FCC Chairwoman Jessica Rosenworcel earlier this summer about the need for such requirements, which we discussed here

At the core of the NPRM are two proposed requirements.  First, parties subject to the rules would have to announce on-air that a political ad (whether a candidate-sponsored ad or an “issue ad” purchased by a political action committee) was created using AI.  Second, those parties would have to include a note in their online political files for political ads containing AI-generated content disclosing the use of such content.  Additional key features of the NPRM are described below.Continue Reading FCC Proposes Labeling and Disclosure Rules for AI-Generated Content in Political Ads

On June 6, the Texas Attorney General published a news release announcing that the Attorney General has opened an investigation into several car manufacturers.  The news release states that the investigation was opened “after widespread reporting that [car manufacturers] have secretly been collecting mass amounts of data about drivers directly from their vehicles and then

Continue Reading Texas Attorney General Opens Investigation into Car Manufacturers’ Collection and Sale of Drivers’ Data

Over the past few months, the Federal Trade Commission (“FTC”) has received requests from U.S. Senators asking the FTC to investigate the data collection practices of several automotive manufacturers.  Last week, Senators Ed Markey (D-MA) and Ron Wyden (D-OR) sent a letter to the FTC asking the agency to investigate several automakers for “deceiving their customers by falsely claiming to require a warrant or court order before turning over customer location data to government agencies.”  Among other things, the letter alleges inconsistent data collection and retention practices in the industry, asserting that some automakers only collect location data for a “critical safety event” (e.g., collision, air bag deployment, or automatic emergency braking event) while others “routinely collect[] and retain[] vehicle location data.”  The letter also states that only one automaker has a policy of informing consumers about legal demands for their data.  The letter refers to the FTC’s recent geolocation “crack down” in other contexts and urges “the FTC to investigate these auto manufacturers’ deceptive claims as well as their harmful data retention practices” and to, “in addition to taking appropriate action against the companies, . . . consider holding these companies’ senior executives accountable for their actions.”Continue Reading Data Collection by Auto Manufacturers under Scrutiny

Last month, the Federal Communications Commission (“FCC”) raised the fixed broadband speed benchmark from 25/3 megabits per second (“Mbps”) to 100/20 Mbps and concluded that “advanced telecommunications capability is not being deployed to all Americans in a reasonable and timely fashion.” As a consequence, the FCC concluded that “section 706 [of the Telecommunications Act of 1996] requires [it] to ‘take immediate action to accelerate deployment of such capability by removing barriers to infrastructure investment and by promoting competition in the telecommunications market.’”Continue Reading FCC Raises Speed Benchmark for Fixed Broadband Services

This quarterly update highlights key legislative, regulatory, and litigation developments in the first quarter of 2024 related to artificial intelligence (“AI”), connected and automated vehicles (“CAVs”), and data privacy and cybersecurity.  As noted below, some of these developments provide industry with the opportunity for participation and comment.Continue Reading U.S. Tech Legislative, Regulatory & Litigation Update – First Quarter 2024

Updated October 14, 2024.  Originally posted February 26, 2024.

On February 15, the Federal Communications Commission (“FCC”) adopted new consent revocation rules for robocalls and robotexts, which the FCC defined as calls made using an “automatic telephone dialing system” or an artificial or prerecorded voice.  Under the Telephone Consumer Protection Act (“TCPA”) and the FCC’s implementing rules, callers and texters must obtain “prior express consent” or “prior express written consent,” depending on the call/text content, from consumers to send such communications absent an applicable exemption. 

According to the Order, the new rules “clarify and strengthen consumers’ rights under the TCPA to grant and revoke consent to receive robocalls and robotexts.”  Specifically, the adopted rules (1) “make clearer that revocation of consent can be made in any reasonable manner;” (2) “require that callers honor do-not-call and consent revocation requests as soon as practicable” and within 10 business days of receipt; and (3) “limit text senders to a one-time text message confirming a consumer’s request that no further text messages be sent.”  

The effective date of the rules is April 11, 2025.  We summarize these new requirements below.Continue Reading FCC Adopts New TCPA Consent Revocation Rules

On February 6, the Federal Communications Commission (“FCC”) announced that it had sent a letter to Lingo Telecom, LLC (“Lingo”) to demand that Lingo “immediately stop supporting unlawful robocall traffic on its networks.”  As background, Lingo is a Texas-based telecommunications provider that, according to the FCC’s letter, was the originating provider for “deepfake” calls made by Life Corp. to New Hampshire voters on January 21, 2024.  The calls, which imitated President Biden’s voice and falsified caller ID information, took place two days before the New Hampshire presidential primary and reportedly advised Democratic voters to refrain from voting in the primary.  Continue Reading FCC Issues Cease-and-Desist Letter Regarding Robocalls Made Before New Hampshire Primary

This quarterly update highlights key legislative, regulatory, and litigation developments in the fourth quarter of 2023 and early January 2024 related to technology issues.  These included developments related to artificial intelligence (“AI”), connected and automated vehicles (“CAVs”), data privacy, and cybersecurity.  As noted below, some of these developments provide companies with the opportunity for participation and comment.Continue Reading U.S. Tech Legislative, Regulatory & Litigation Update – Fourth Quarter 2023