When providing personal information, including protected health information, UC’s Electronic Information Security Policy (IS-3), along with local UC data security policies for researchers, must be followed.
Importantly, the National Institutes of Health (NIH) have noted that institutions who have been issued a Certificate of Confidentiality (CoC) must consider the CoC protections when selecting 3rd parties or vendors. Why? These 3rd parties or entities (contractors, online platform vendors) must provide the same CoC protections. This means that they must also protect covered information against compelled disclosure.
Provisions under GDPR and PIPL may also apply if  the data subjects are located internationally (such as EEA, UK, or China).
When AI is used for consent translations, researchers must follow UCI HRP Policy # 31. Confirmation of an AI translation must be verified via a human translator whose qualifications  align with UCI HRP Policy.