Tag Archives: CCPA

New year, new laws: Washington re-introduces comprehensive privacy act among flurry of 2020 consumer privacy bills

By Kimberly Gold, Sarah Bruno and Jim Barbuto on Posted in Privacy & Data Protection
Washington state’s lawmakers started the 2020 legislative session with a renewed focus on consumer privacy through the introduction of ten privacy-related bills across the state House and Senate on January 13. Chief among these proposals was the comprehensive Washington Privacy Act (WPA), a new version of which was re-introduced in the Senate after the previous … Continue Reading

Proposed CCPA amendment would provide significant clarity to health care and life sciences companies

By Alexis Cocco and Kimberly Gold on Posted in Privacy & Data Protection, Regulatory
Despite intensive lobbying from industry groups, multiple amendments before its effective date, and extensive proposed regulations from the California attorney general, the California Consumer Privacy Act (CCPA) went into effect earlier this month with still many questions left unanswered: What compromises will be made regarding employee and business-to-business data? Will there be further insight into … Continue Reading

The EU-U.S. Privacy Shield: feedback, and potential EU recognition of privacy laws of California and other U.S. states?

By Katalina Bateman, Alexis Cocco and Karen Lee Lust on Posted in Global Data Transfers
Background On October 23, 2019, the European Commission (EC) released its report on a third annual review of the EU-U.S. Privacy Shield. While the report confirms that the U.S. continues to provide an adequate level of protection for personal data transfers in the context of the Privacy Shield, there are some gaps between the expectations … Continue Reading

Biometric privacy: The year in review and looking toward 2020

By Kimberly Gold, Michael Galibois, Jim Barbuto and Noelle Klockner on Posted in CCPA, Privacy & Data Protection
2019 signalled significant growth in both regulatory focus and litigation involving biometric privacy. The passage of the California Consumer Privacy Act (CCPA), the addition of biometrics to numerous state data breach notification laws (including New York), and continued class action lawsuits emanating from Illinois’ Biometric Information Privacy Act (BIPA) made biometrics a trend line in … Continue Reading

IAB issues CCPA compliance framework for public comment

By Keri S. Bruce and Gerard Stegmaier on Posted in Privacy & Data Protection, Regulatory, Social, Mobile, Analytics & Cloud (SMAC)
Given the vast challenges California’s sweeping new privacy law, the California Consumer Privacy Act (CCPA), poses for digital marketing, the Interactive Advertising Bureau (IAB) released for public comment a draft of its proposed Compliance Framework for Publishers & Technology Companies (the Framework) on October 22. “Selling” and CCPA challenges for digital. Those who have been … Continue Reading

Uncertainty hangs over the life sciences and healthcare industries in draft regulations of The California Consumer Privacy Act

By Catherine David, Brad Rostolsky, Kimberly Gold and Alexis Cocco on Posted in Privacy & Data Protection, Regulatory
On October 10th, the Attorney General of California, Xavier Becerra, delivered the highly anticipated text of the proposed California Consumer Privacy Act (CCPA) regulations. However, untouched and unexplained were the Health Insurance Portability and Accountability Act, California Medical Information Act, and clinical research exemptions. The industry has and will continue to grapple with these exemptions, which … Continue Reading

California attorney general issues draft CCPA regulations

By Kimberly Gold, Bart Huffman, Samuel F. Cullari, Aaron Lancaster, Wendell Bartnick and Alexis Cocco on Posted in CCPA, Privacy & Data Protection, Regulatory
On October 10, 2019, California Attorney General Xavier Becerra issued proposed regulations implementing and interpreting the California Consumer Privacy Act (CCPA). The draft regulations address privacy policies, consumer notices, practices for handling consumer requests, ways to verify consumer requests, requirements regarding minors, and rules governing nondiscrimination practices. The regulations are currently in draft form, with … Continue Reading

A new California privacy initiative seeks to further bolster individual privacy rights

By Kimberly Gold, Gerard Stegmaier, Alexis Cocco, Jacqueline Lefebvre and Taber Rueter on Posted in CCPA, Privacy & Data Protection, Regulatory
Another potentially groundbreaking California ballot initiative has been announced, just as companies began to digest and incorporate the amendments to the California Consumer Privacy Act (CCPA) into their compliance plans and learned the draft CCPA regulations will be issued by the California Attorney General in October. Last week, the primary advocate for and co-architect of … Continue Reading

Last minute amendments likely finalize CCPA language for January 1 deadline.

By Bart Huffman, Gerard Stegmaier, Wendell Bartnick and Alexis Cocco on Posted in CCPA, Privacy & Data Protection, Regulatory
Late last week, the California legislature approved five bills intended to clarify the scope and required compliance obligations of the California Consumer Privacy Act (CCPA or the Act). Organizations now have just over three months to determine whether they need to comply with the newly amended CCPA, assess what their obligations are, and implement the … Continue Reading

The facial scan that launched a thousand laws: biometric privacy legislation trend continues to grow nationwide

By Kimberly Gold, Michael Galibois and Jim Barbuto on Posted in CCPA, Privacy & Data Protection
Many states are following in the footsteps of Illinois’ Biometric Information Privacy Act (BIPA), a law that has led to an increase in the volume of class action privacy litigation and highlighted the importance of enterprise-level management of biometric data (e.g., fingerprint, voiceprint, and retina, facial, or iris image). Organizations that collect and use biometric … Continue Reading

What businesses should know about the upcoming CCPA rulemaking

By Gerard Stegmaier and Mark Quist on Posted in CCPA, Privacy & Data Protection
With barely half a year until the California Consumer Privacy Act (CCPA) takes effect in January 2020, the landmark privacy law is in a state of flux. The already-amended landmark law is likely to face further rounds of revision, and the California Attorney General is required to hammer out many key compliance requirements through an … Continue Reading

California lawmakers propose new CCPA amendments that address major concerns of the business community while preserving the privacy law

By Xiaoyan Zhang, Gerard Stegmaier and Kimberly Gold on Posted in CCPA, Privacy & Data Protection
Last week, the California Assembly’s Committee on Privacy and Consumer Protection, which exercises jurisdiction over privacy and personal information protection matters, approved several amendment bills intended to clarify and narrow the scope of the California Consumer Privacy Act (CCPA or the Act). In January 2020, the CCPA will impose landmark burdens and obligations on businesses … Continue Reading

California Attorney General proposes expanded CCPA Private Right of Action following State Assembly Hearing on possible 2019 amendments to the landmark privacy law

By Gerard Stegmaier and Mark Quist on Posted in CCPA, Privacy & Data Protection, Regulatory
BREAKING: California Attorney General Xavier Becerra (AG) announced a proposed series of amendments to the California Consumer Privacy Act (CCPA) that would: Expand consumers’ private right of action to include all alleged violations of their rights under the CCPA; Eliminate businesses’ 30-day opportunity to “cure” alleged violations prior to being subject to civil enforcement by … Continue Reading

Draft amendments to China’s personal information standards proposed

By Xiaoyan Zhang, Jim Barbuto, Trevor Satnick, Amy Yin and Catherine Jing on Posted in CCPA, Privacy & Data Protection
China’s National Information Security Standardization Technical Committee issued draft amendments (Amendments) to the standards that govern the protection of personal information, “Information Security Technology – Personal Information Security Specification” (Standards, effective May 1, 2018) on February 1, 2019. The Standards provide guidance on interpreting China’s Cybersecurity Law (CSL) and set out best practices for the … Continue Reading

Public comment for private matters: NTIA receives over 200 comments on proposed approach to protecting consumer privacy informed by GDPR, CCPA & more

By Samuel F. Cullari and Jim Barbuto on Posted in CCPA, GDPR, Privacy & Data Protection, Regulatory
On November 13, 2018, the U.S. Department of Commerce’s National Telecommunications and Information Administration (NTIA) released comments it received from over 200 government, non-profit, academic, and private sector organizations on developing the Administration’s approach to consumer privacy.[1] Since September, the NTIA has sought public comments to specifically address a number of questions that focused on … Continue Reading
LexBlog