News & Analysis as of

California Consumer Privacy Act (CCPA) Data Protection

The California Consumer Privact Act (CCPA), effective January 1, 2020, enhances privacy rights and consumer protections of California residents. Follow this channel for latest guidance and updates on the CCPA,... more +
The California Consumer Privact Act (CCPA), effective January 1, 2020, enhances privacy rights and consumer protections of California residents. Follow this channel for latest guidance and updates on the CCPA, including implications for business conducting business in California.  less -
Troutman Pepper Locke

US State Risk Assessment and Impact Assessment Requirements

Troutman Pepper Locke on

The number of instances in which businesses must conduct risk assessments and impact assessments under state privacy and AI laws has exploded. In recent months, California and Connecticut have added additional — and...more

Downs Rachlin Martin PLLC

Navigating Privacy Laws: Do They All Apply To Your Business?

Downs Rachlin Martin PLLC on

By now, most businesses have heard of various privacy laws and regulations, whether it’s GDPR, CCPA, HIPAA, or something else on a seemingly ever-growing list.  But do all of these laws and regulations actually apply to your...more

Loeb & Loeb LLP

Hashed & Salted: Vol. 4, Issue 4

Loeb & Loeb LLP on

As the Summer of Privacy fades into fall, California is—unsurprisingly—in the privacy news. The California Privacy Protection Agency (CPPA) succeeded in finalizing proposed regulations under the California Consumer Privacy...more

Hudson Cook, LLP

Important Compliance Notes on CCPA

Hudson Cook, LLP on

August 29, 2025 Megan Nicholls On July 1, 2025, California Attorney General Rob Bonta announced a breathtaking $1.55 million settlement with the operator of a health and wellness information website. The operator is alleged...more

Troutman Pepper Locke

U.S. State Privacy and AI Laws Key Dates (2025)

Troutman Pepper Locke on

Between consumer data privacy laws, AI laws, data broker laws, and children’s privacy laws, the number of deadlines companies must track has exploded. This includes deadlines that are often buried in laws and regulations,...more

Farella Braun + Martel LLP

Understanding the Importance of Data Asset Protection: Why Wineries Need to Pay Attention to Policies and Procedures

Farella Braun + Martel LLP on

Data asset protection is traditionally associated with industries and entities that develop or store particularly sensitive information, like tech companies, hospitals, law firms, and government entities. However, data asset...more

Coblentz Patch Duffy & Bass

CPPA Enforcement Actions: Key Lessons from Honda, Todd Snyder, and Healthline

Coblentz Patch Duffy & Bass on

The California Privacy Protection Agency (CPPA) is now in its second year with full enforcement powers and has begun to exercise its authority under the California Consumer Privacy Act (CCPA) in significant ways in 2025. With...more

Foley Hoag LLP - Security, Privacy and the...

California Finalizes New CCPA Regulations: What Businesses Need to Know

Foley Hoag LLP - Security, Privacy and the... on

California continues to lead the way in data privacy standards as the latest regulatory updates from the California Privacy Protection Agency (“CPPA”) mark a significant step forward in safeguarding individual rights and data...more

Sheppard Mullin Richter & Hampton LLP

California Finalizes New CCPA Rules on ADMT, Cybersecurity Audits, and Risk Assessments

Sheppard Mullin Richter & Hampton LLP on

On July 24, the California Privacy Protection Agency (CPPA) approved a major rule package covering automated decision-making technology (ADMT), mandatory cybersecurity audits, and privacy risk assessments under the California...more

Osano

DSAR Response Letter: How to Respond to a Subject Rights Request

Osano on

If you’re not accustomed to handling data subject access requests (DSARs), then it’s understandable if you feel a bit nervous about responding. After all, there are all sorts of legal requirements involved and the potential...more

Sheppard Mullin Richter & Hampton LLP

CPPA Adopts ADMT, Cybersecurity and Risk Assessment Regulations

Sheppard Mullin Richter & Hampton LLP on

The CPPA scratched another task off the to-do list last month when it officially adopted proposed regulations under CCPA. These rules focus on three major areas: automated decision-making technology, risk assessments, and...more

Constangy, Brooks, Smith & Prophete, LLP

State privacy enforcement heats up this summer: What CA, CT settlements mean for your business

Constangy, Brooks, Smith & Prophete, LLP on

In an era of escalating data breaches, organizations must be vigilant in protecting consumer information. A comprehensive federal data privacy law would streamline compliance efforts, but Congress has yet to pass one, leaving...more

Downs Rachlin Martin PLLC

Why Your Company Needs a Robust Website Privacy Policy

Downs Rachlin Martin PLLC on

In today’s digital landscape, a website privacy policy is no longer just a legal formality—it’s a critical shield for your business and a trust-building tool for your customers.  Here’s why every company should prioritize...more

Osano

Optimizing Privacy Operations: Making Compliance Less of a Fire Drill

Osano on

With so much data flying around, it’s more essential than ever that personal information remain private. To help make sure of this, there are a growing number of regulations aimed at personal data protection—like the GDPR and...more

Osano

What Is the Processing of Personal Data?

Osano on

You never think about breathing air. Most of the time, you’re not consciously moving your legs as you walk. You don’t have to remind yourself to blink every few seconds.  For modern businesses, that’s what processing personal...more

Osano

Data Privacy Strategy: The Complete Compliance Guide

Osano on

Organizations often struggle with privacy in a regulatory landscape that can change at any point. However, the risk of data breaches is always rising, and awareness of privacy rights is growing. As a result, maintaining the...more

Smith Anderson

Brewing Trouble: The Steep Price of Privacy Missteps

Smith Anderson on

A recent high-profile breach at a women-focused dating app underscores how quickly a privacy misstep can escalate into lawsuits and reputational harm. The incident offers a cautionary tale for any company handling sensitive...more

Pagefreezer

A Guide to Remote Work Compliance

Pagefreezer on

The COVID-19 pandemic caused office workers to start working from home—but businesses should expect remote work to last a long time. Beyond the unpredictability of this pandemic, 99% of remote workers want to continue...more

Baker Botts L.L.P.

The CPPA Finalizes Rules on ADMT, Risk Assessments, and Cybersecurity Audits

Baker Botts L.L.P. on

On 24 July 2025, the California Privacy Protection Agency (CPPA) unanimously approved a long-awaited and -debated rulemaking package that addresses: (i) the use of automated decision-making technology, (ii) mandatory risk...more

Blank Rome LLP

The BR Privacy & Security Download: August 2025

Blank Rome LLP on

Welcome to this month’s issue of The BR Privacy & Security Download, the digital newsletter of Blank Rome’s Privacy, Security, & Data Protection practice....more

Ogletree, Deakins, Nash, Smoak & Stewart,...

California Finalizes Groundbreaking Regulations on AI, Risk Assessments, and Cybersecurity, Part II: What Businesses Need to Know

Ogletree, Deakins, Nash, Smoak & Stewart,... on

In July 2025, the California Privacy Protection Agency (CPPA) Board unanimously approved new regulations pursuant to the California Consumer Privacy Act (CCPA) that specifically address the use of automated decisionmaking...more

Blank Rome LLP

California Finalizes CCPA Regulations on Cybersecurity Audits, Risk Assessments, and Automated Decisionmaking: Key Provisions and...

Blank Rome LLP on

The California Privacy Protection Agency (“CPPA”) finalized a set of regulations under the California Consumer Privacy Act (“CCPA”) on July 24, 2025, that address cybersecurity audits, risk assessments, and automated...more

Polsinelli

What You Need to Know About California’s Finalized CCPA Amendments: Part Two

Polsinelli on

On July 24, 2025, the California Privacy Protection Agency (CPPA) approved final regulations (the Rule) under the California Consumer Privacy Act of 2018 (CCPA), introducing new obligations related to automated...more

Jackson Lewis P.C.

CCPA Enforcement Action Highlights CPPA Focus on Opt-Out Rights, Website Functionality, and Reliance on Service Providers

Jackson Lewis P.C. on

On May 1, 2025, the California Privacy Protection Agency (CPPA) issued a Final Order in one of its first public enforcement actions under the California Consumer Privacy Act (CCPA), imposing a fine of nearly $350,000 on the...more

Herbert Smith Freehills Kramer

Independent Cybersecurity Audits Will Be Required for ‘Significant Risk’ Under CCPA

Herbert Smith Freehills Kramer on

The California Privacy Protection Agency (CPPA) has unanimously adopted new regulations requiring certain businesses subject to the California Consumer Privacy Act (CCPA) to conduct annual audits of their cybersecurity...more

1,595 Results
 / 
View per page
Page: of 64
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide