fbpx

Download free GDPR compliance checklist!

Tag Archives for " CCPA "

Revised, Washington State Privacy Legislation Moves Forward

The Washington Privacy Act is back and now includes provisions for handling personal data during a public health emergency such as a pandemic.

Its provisions are closer to the European Union’s General Data Privacy Regulation (GDPR) than the California Consumer Privacy Act (CCPA).

Source: Revised, Washington State Privacy Legislation Moves Forward

Multiple Retailers Sued Under CCPA for Sharing Data Used to Identify Fraudulent Returns

Earlier this year, The Retail Equation, a loss prevention service provider, and Sephora were hit with a class action lawsuit in which the plaintiff claimed Sephora improperly shared consumer data with The Retail Equation without consumers’ knowledge or consent.

The plaintiff claimed The Retail Equation did so to generate risk scores that allegedly were “used as a pretext to advise Sephora that attempted product returns and exchanges are fraudulent and abusive.”

Source: Multiple Retailers Sued Under CCPA for Sharing Data Used to Identify Fraudulent Returns

California begins enforcing broad digital privacy law, despite calls for delay 

The California privacy law took effect in January, but the attorney general had to wait until July to enforce.

California’s privacy law, often called the broadest law for digital privacy in the United States, can finally be enforced starting Wednesday. And despite industry calls for the state to hold off because of the novel coronavirus pandemic, Attorney General Xavier Becerra is forging ahead.

Source: California begins enforcing broad digital privacy law, despite calls for delay – The Washington Post

California AG Won’t Delay CCPA Enforcement, but May Exercise Prosecutorial Discretion

California’s Attorney General won’t delay enforcement of key provisions of the California Consumer Privacy Act, but will use prosecutorial discretion in enforcing them, according to its Final Statement of Reasons for the regulations.

When asked to delay enforcement of the regulations, the AG responded that no delay is required because the proposed rules were released on Oct. 11, 2019, Feb. 10 and March 11 and thus businesses have been aware of the obligations imposed.

Source: California AG Won’t Delay CCPA Enforcement, but May Exercise Prosecutorial Discretion

California AG posts final proposed CCPA Regulations

The California Attorney General has posted the final proposed CCPA Regulations, which were submitted to the California Office of Administrative Law (OAL) on June 1, 2020.

The final proposed regulations are virtually unchanged from the prior version, posted on March 11. Along with the final proposed CCPA regulations, the AG also posted its Final Statement of Reasons (FSOR).

Source: US: California AG posts final proposed CCPA Regulations and offers insights ahead of July 1 enforcement deadline

California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

The California Privacy Rights Act (CPRA) is progressing through California’s elections process for inclusion on the November 2020 ballot. Businesses may want to begin considering how their data privacy obligations in California may change if voters enact CPRA.

The CPRA is a ballot measure created by Californians for Consumer Privacy. It would significantly amend the CCPA. Substantive provisions of the CPRA would become effective on January 1, 2023.

Source: California Privacy Compliance Obligations May Soon Change Under CPRA Ballot Initiative

Google’s Coronavirus Test Sites May Be Scooping Up People’s Sensitive Information

In the two months since Verily rolled out the testing sites in California, advocates and lawmakers have been warning the Alphabet subsidiary may not be in compliance with California’s strict new privacy law that requires companies to give detailed, clear information to consumers on what kind of information it’s collecting.

Mary Stone Ross, an Oakland-based consumer privacy expert, said Verily is not complying with the letter of the law because it does not list on its website every category of personal information it collects from users, referencing the exact language used in the law.

More broadly problematic is the fact that there seems to be little oversight of the company. For example, the California privacy law passed in January is not going to be fully enforced until July.

Source: Google’s Coronavirus Test Sites May Be Scooping Up People’s Sensitive Information – VICE

CCPA Regulations Still Not Final as Enforcement Deadline Approaches

Businesses spent the latter months of 2019 working hard to prepare for the January 1, 2020 implementation of the California Consumer Privacy Act (CCPA).

Months later, those businesses still are uncertain of their full range of potential compliance obligations because the California Attorney General’s (CAG) CCPA implementing regulations are still not final. Both the CAG draft regulations and the CPRA are subject to complicated administrative processes that could affect their adoption and implementation.

Read more: CCPA Regulations Still Not Final as Enforcement Deadline Approaches; CPRA Appears to Move Forward

Android Users Battling Google Can’t Seek Intervention By Appeals Court

A group of Android users have lost another round in a privacy battle with Google over alleged location tracking.

U.S. District Court Judge Edward Davila in San Jose, California rejected the Android users’ request to immediately appeal his earlier ruling dismissing their claim that Google violated the California Invasion of Privacy Act.

Source: Android Users Battling Google Can’t Seek Intervention By Appeals Court 04/17/2020

California Consumer Privacy Act: Will it prompt federal data privacy & protection laws in the U.S.? 

Passed unanimously, and introduced on 1 January this year, the California Consumer Privacy Act (CCPA) is the first comprehensive legislation that focuses on consumer data and privacy in the US. Similar to the EU’s General Data Protection Regulation (GDPR), the CCPA has forced most businesses operating in the state to make structural changes to their privacy programs.

The CCPA has already triggered a number of other data security and privacy regulations at state level, but how long will it take before we see federal data privacy and protection laws implemented in the US?

Full article: California Consumer Privacy Act: Will it prompt federal data privacy & protection laws in the U.S.? – PrivSec Report

1 2 3 4
>