On June 3, 2022, House Energy and Commerce Chair Rep. Frank Pallone, Ranking Member Rep. Cathy McMorris Rodgers and Senate Commerce, Science and Transportation Committee Ranking Member Sen. Roger Wicker released a new comprehensive federal privacy bill, the American Data Privacy and Protection Act.
Continue Reading House and Senate Release a Bipartisan U.S. Federal Privacy Bill

On March 10, 2022, in its first formal written opinion interpreting the California Consumer Privacy Act’s compliance obligations, the California Attorney General confirmed that the CCPA grants consumers the right to access inferences drawn from personal information collected about the consumer, even if such inferences are generated by the business (unless the business can demonstrate that a statutory exception to the CCPA applies).
Continue Reading California AG Issues Decision on Disclosure of Inference Data in Response to CCPA Access Requests

On February 18, 2022, California Assembly Member Evan Low introduced a pair of bills that would extend the duration of the current exemptions in the CCPA/CPRA for certain HR data and business-to-business customer representative personnel data from most of the law’s requirements.
Continue Reading California Assembly Introduces Bills to Extend CCPA/CPRA Exemptions for HR and B2B Data

On January 28, 2022, California Attorney General Rob Bonta published a statement regarding recent investigations conducted by his Office with respect to businesses operating loyalty programs and their compliance with the CCPA’s financial incentive requirements.
Continue Reading California AG Issues CCPA Non-Compliance Notices to Businesses Operating Loyalty Programs

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020, California’s data breach notification law and California’s data security law. Additional bills, amending the California Confidentiality of Medical Information Act and the California Insurance Code, also were also signed into law. The Governor also signed into law a bill protecting the privacy and security of genetic data processed by direct-to-consumer genetic testing companies, and a bill designed to prevent the sale, purchase and use of data obtained by illegal means.
Continue Reading California Governor Signs into Law Bills Updating the CPRA and Bills Addressing the Privacy and Security of Genetic and Medical Data, Among Others

The California Attorney General recently released a summary of enforcement actions the agency brought against companies in violation of the CCPA since enforcement of the Act began on July 1, 2020. The AG also launched the Consumer Privacy Interactive Tool, which allows California consumers to draft a notice of noncompliance to businesses that do not post an easy-to-find “Do Not Sell My Personal Information” link on their website.
Continue Reading California Attorney General Issues Summary of CCPA Enforcement Actions and Launches Consumer Privacy Interactive Tool

The California Attorney General has updated its CCPA FAQs to state that the newly developed Global Privacy Control “must be honored by covered businesses as a valid consumer request to stop the sale of personal information.”
Continue Reading California Attorney General Updates CCPA FAQs Indicating Mandatory Compliance with Global Privacy Control