News
California Attorney General settles with Sephora in first CCPA fine
26 August 2022
Aaron Lariviere
Senior AssociateWashington, D.C.
Email [email protected]hoganlovells.com
Phone +1 202 637 6158
Fax +1 202 637 5910
LanguagesEnglish
Practice groupGlobal Regulatory
Against a shifting backdrop of global privacy and cybersecurity laws, Aaron Lariviere helps clients find a path forward – by identifying risks, developing practical solutions, and giving clear advice.
Whether advising on complex international data transfers, responding to a data breach, or building a robust privacy compliance program, Aaron regularly works with businesses and nonprofit organizations of all sizes across a range of industries. His clients include multinational media and technology companies, consumer-facing internet brands, software companies, and private and public academic institutions, among others.
Aaron helps clients comply with domestic and international data privacy and security laws, including the California Consumer Privacy Act (CCPA) and the European Union's General Data Protection Regulation (GDPR). At the same time, he provides careful analysis and strategic insight to clients facing sensitive data security incidents.
Before becoming a lawyer, Aaron spent a decade in the entertainment industry – working by day in film and television production, and by night as a musician. Highlights of his early career include working for the executive producer of The Simpsons and having two of his songs featured on Grey's Anatomy.
Education and admissions
Education
J.D., Georgetown University Law Center, cum laude, 2017
B.A., Emerson College, 2004
Bar admissions and qualifications
District of Columbia
California
Representative experience
Helped develop and implement a global GDPR compliance program for a multinational mass media conglomerate.
Advised on multiple data security incident investigations and responses, including breach notification of individuals and government authorities.
Advised more than a dozen colleges and universities on GDPR and ePrivacy compliance, including issues relating to study abroad, admissions, and institutional advancement.
Assisted two popular internet companies with a cross-brand data sharing initiative, assessing implications under U.S. and EU law and implementing compliance strategies.
Advised on Privacy Shield issues involving certification, renewal, withdrawal, and response to inquiries from the Department of Commerce.
Helped U.S.-based research institutions structure cross-border data sharing arrangements to facilitate clinical trials, medical and genetic research, and other academic research.
Latest thinking and events
News
Colorado enacts comprehensive privacy law
12 July 2021
News
CPRA Countdown: How businesses can comply with the CPRA
25 November 2020
News
Final CCPA regulations approved, including additional changes
18 August 2020
News
Final CCPA regulations approved, including additional changes
17 August 2020
News
Second modified CCPA draft regulations released—comments due March 27
12 March 2020
