Close

Jarno Vanto is a Partner in our Data, Privacy and Security practice. Due to his extensive international regulatory experience, he is frequently called upon by his clients to provide a differentiated global perspective regarding privacy, cybersecurity, artificial intelligence, and technology related matters.

Jarno partners with his clients on key business issues spanning privacy and cybersecurity regulatory compliance and investigations, AI regulations, AI governance, complex cross-border technology and data transactions, data and software licensing, and other technology and data transfer agreements. He counsels clients regarding global privacy and cybersecurity compliance programs, AI governance, and IP management. His experience spans the full scope of privacy and artificial intelligence laws, including, not by way of limitation, GDPR, CCPA, the EU AI Act, and emerging U.S. state privacy and AI laws. He provides privacy compliance counseling and AI governance counseling to companies that provide software-as-a-service, data-as-a-service, automotive and connected vehicle technologies, mobile applications, location-based technologies, financial services, cloud technologies, HR services, and healthcare technologies. He also regularly advises global corporations on the legal issues they encounter operating in the U.S. market.

Jarno frequently advises private equity funds and their portfolio companies on privacy due diligence and transactions involving companies whose core business is regulated data. Multinationals rely on Jarno’s expertise in connection with group cross-border data transfer frameworks.

Jarno holds CIPP/US and CIPP/E certifications.

Back to Page

People

People

Jarno
Vanto

Partner
Data, Privacy and Security

New York: +1 212 556 2210
jvanto@kslaw.com

Related Capabilities
Intellectual Property Technology Transactions Government Matters Technology Financial Services Life Sciences and Healthcare Fintech Technology M&A Artificial Intelligence (AI) and Machine Learning Data Centers

Jarno Vanto is a Partner in our Data, Privacy and Security practice. Due to his extensive international regulatory experience, he is frequently called upon by his clients to provide a differentiated global perspective regarding privacy, cybersecurity, artificial intelligence, and technology related matters.

Jarno partners with his clients on key business issues spanning privacy and cybersecurity regulatory compliance and investigations, AI regulations, AI governance, complex cross-border technology and data transactions, data and software licensing, and other technology and data transfer agreements. He counsels clients regarding global privacy and cybersecurity compliance programs, AI governance, and IP management. His experience spans the full scope of privacy and artificial intelligence laws, including, not by way of limitation, GDPR, CCPA, the EU AI Act, and emerging U.S. state privacy and AI laws. He provides privacy compliance counseling and AI governance counseling to companies that provide software-as-a-service, data-as-a-service, automotive and connected vehicle technologies, mobile applications, location-based technologies, financial services, cloud technologies, HR services, and healthcare technologies. He also regularly advises global corporations on the legal issues they encounter operating in the U.S. market.

Jarno frequently advises private equity funds and their portfolio companies on privacy due diligence and transactions involving companies whose core business is regulated data. Multinationals rely on Jarno’s expertise in connection with group cross-border data transfer frameworks.

Jarno holds CIPP/US and CIPP/E certifications.

Full Bio
Email Jarno

Credentials

LL.M., New York University School of Law

Master of Laws, University of Turku

New York

Dutch

Finnish

German

Swedish

08.21.2024
Webinar

Managing New and Emerging Data Privacy and Security Risks for U.S. and EU Life Sciences Companies

View all events

News

In the News · Source: ICLG and Global Legal Chronicle

January 20, 2025
K&S advises ServiceNow on its acquisition of software developer Cuein

Cases & Deals

January 17, 2025
ServiceNow to Acquire AI Native Conversation Data Analysis Platform Cuein

In the News · Source: Global Data Review

December 21, 2023
Jarno Vanto discusses the FTC’s proposed changes to the Children’s Online Privacy Protection Act Rule

View all

Matters

Counseled an insurance company in connection with an industry regulator cybersecurity investigation.

Advised several clients on state attorney general privacy civil investigations.

Advised an AI model developer on AI cybersecurity.

See more

Close

Matters

Counseled an insurance company in connection with an industry regulator cybersecurity investigation.

Advised several clients on state attorney general privacy civil investigations.

Advised an AI model developer on AI cybersecurity.

Counseled a financial institution in connection with a financial industry regulator cybersecurity investigation.

Counseled a financial institution on their NYDFS Part 500 compliance.

Counseled a global software company on their data mapping and privacy impact assessments.

Counseled Fortune 100 energy company on privacy & cybersecurity compliance.

 

Advised an automotive company on AI governance.

Counseled leading global company on response to cybersecurity incident arising from MOVEit security vulnerability.

Counseled a real estate fund on their privacy and cybersecurity compliance.

Advises multiple multinationals on both inbound and outbound transfers of personal information to and from China.

Advised a global data service provider on the creation and implementation of a cross-border data transfer framework.

Drafted a comprehensive information security program and associated policies for a crypto payment platform.

Advised a global data service provider on a comprehensive privacy compliance program.

Advised a client on FTC and European regulator investigations, which were subsequently closed.

Advised a location technology company on their GDPR and CCPA compliance.

Advised a mobile advertising platform on their CCPA compliance.

Advised a clinical trial technology platform on their global privacy compliance.

Advised a field service management software company on their GDPR compliance.

Advised a mobile gaming company on their GDPR and CCPA compliance.

Advised a sensor technology company on GDPR compliance.

Advised a mobile advertising technology company on a consent management platform development.

Advised a game streaming platform on privacy compliance.

Advised a fashion online retail technology company on GDPR and CCPA compliance.

Advised a product data platform company on GDPR compliance.

Advised an online and mobile fraud detection platform on GDPR and CCPA compliance.

Advised a globally operating fabric materials company on international transfers of personal data.

Advised a globally operating industrial conglomerate on international transfers of personal data.

Advised a location technology company on building a global privacy program.

Advised a health care app provider on HIPAA compliance.

Advised a communications app developer on global privacy compliance.

Advised an international mobile gaming company on international transfers of personal data.

Performed privacy due diligence of U.S. target companies for a European venture capital fund.

Advised an advertising technology company on demand and supply side data licensing agreements, SDK licensing and development.

Advised industrial equipment manufacturers on machine-generated data rights, data licensing, and data strategy development.

Advised a sensor technology manufacturer on data rights and licensing.

Advised a global vehicle manufacturer on connected vehicle data rights and licensing.

Advised an indoor positioning company in its licensing and Platform-as-a-Service deals with Yahoo! Japan and a Korean technology conglomerate.

Advised a location data platform vendor on their Platform-as-a-Service agreement with several global telcos.

Insights

Client Alert

January 23, 2025
Biden Administration’s Eleventh-Hour Executive Order Imposes New Software Requirements on Companies

Article · Source: Practising Law Institute

December 4, 2024
Practising Law Institute's Broker Dealer Regulation Treatise

Client Alert

March 6, 2024
Biden Administration Initiates Inquiry Targeting "Connected Vehicles," with Chinese Electric Vehicles and Supply Chain As Clear Target For Regulation

View all

News

In the News · Source: ICLG and Global Legal Chronicle

January 20, 2025
K&S advises ServiceNow on its acquisition of software developer Cuein

Cases & Deals

January 17, 2025
ServiceNow to Acquire AI Native Conversation Data Analysis Platform Cuein

In the News · Source: Global Data Review

December 21, 2023
Jarno Vanto discusses the FTC’s proposed changes to the Children’s Online Privacy Protection Act Rule

View all

Matters

Counseled an insurance company in connection with an industry regulator cybersecurity investigation.

Advised several clients on state attorney general privacy civil investigations.

Advised an AI model developer on AI cybersecurity.

See more

Close

Matters

Counseled an insurance company in connection with an industry regulator cybersecurity investigation.

Advised several clients on state attorney general privacy civil investigations.

Advised an AI model developer on AI cybersecurity.

Counseled a financial institution in connection with a financial industry regulator cybersecurity investigation.

Counseled a financial institution on their NYDFS Part 500 compliance.

Counseled a global software company on their data mapping and privacy impact assessments.

Counseled Fortune 100 energy company on privacy & cybersecurity compliance.

 

Advised an automotive company on AI governance.

Counseled leading global company on response to cybersecurity incident arising from MOVEit security vulnerability.

Counseled a real estate fund on their privacy and cybersecurity compliance.

Advises multiple multinationals on both inbound and outbound transfers of personal information to and from China.

Advised a global data service provider on the creation and implementation of a cross-border data transfer framework.

Drafted a comprehensive information security program and associated policies for a crypto payment platform.

Advised a global data service provider on a comprehensive privacy compliance program.

Advised a client on FTC and European regulator investigations, which were subsequently closed.

Advised a location technology company on their GDPR and CCPA compliance.

Advised a mobile advertising platform on their CCPA compliance.

Advised a clinical trial technology platform on their global privacy compliance.

Advised a field service management software company on their GDPR compliance.

Advised a mobile gaming company on their GDPR and CCPA compliance.

Advised a sensor technology company on GDPR compliance.

Advised a mobile advertising technology company on a consent management platform development.

Advised a game streaming platform on privacy compliance.

Advised a fashion online retail technology company on GDPR and CCPA compliance.

Advised a product data platform company on GDPR compliance.

Advised an online and mobile fraud detection platform on GDPR and CCPA compliance.

Advised a globally operating fabric materials company on international transfers of personal data.

Advised a globally operating industrial conglomerate on international transfers of personal data.

Advised a location technology company on building a global privacy program.

Advised a health care app provider on HIPAA compliance.

Advised a communications app developer on global privacy compliance.

Advised an international mobile gaming company on international transfers of personal data.

Performed privacy due diligence of U.S. target companies for a European venture capital fund.

Advised an advertising technology company on demand and supply side data licensing agreements, SDK licensing and development.

Advised industrial equipment manufacturers on machine-generated data rights, data licensing, and data strategy development.

Advised a sensor technology manufacturer on data rights and licensing.

Advised a global vehicle manufacturer on connected vehicle data rights and licensing.

Advised an indoor positioning company in its licensing and Platform-as-a-Service deals with Yahoo! Japan and a Korean technology conglomerate.

Advised a location data platform vendor on their Platform-as-a-Service agreement with several global telcos.

Insights

Client Alert

January 23, 2025
Biden Administration’s Eleventh-Hour Executive Order Imposes New Software Requirements on Companies

Article · Source: Practising Law Institute

December 4, 2024
Practising Law Institute's Broker Dealer Regulation Treatise

Client Alert

March 6, 2024
Biden Administration Initiates Inquiry Targeting "Connected Vehicles," with Chinese Electric Vehicles and Supply Chain As Clear Target For Regulation

View all

News

In the News · Source: ICLG and Global Legal Chronicle

January 20, 2025
K&S advises ServiceNow on its acquisition of software developer Cuein

Cases & Deals

January 17, 2025
ServiceNow to Acquire AI Native Conversation Data Analysis Platform Cuein

In the News · Source: Global Data Review

December 21, 2023
Jarno Vanto discusses the FTC’s proposed changes to the Children’s Online Privacy Protection Act Rule

View all

Credentials

LL.M., New York University School of Law

Master of Laws, University of Turku

New York

Dutch

Finnish

German

Swedish

08.21.2024
Webinar

Managing New and Emerging Data Privacy and Security Risks for U.S. and EU Life Sciences Companies

View all events