News & Analysis as of

California Consumer Privacy Act (CCPA) Data-Sharing Personal Information

The California Consumer Privact Act (CCPA), effective January 1, 2020, enhances privacy rights and consumer protections of California residents. Follow this channel for latest guidance and updates on the CCPA,... more +
The California Consumer Privact Act (CCPA), effective January 1, 2020, enhances privacy rights and consumer protections of California residents. Follow this channel for latest guidance and updates on the CCPA, including implications for business conducting business in California.  less -
Kelley Drye & Warren LLP

California AG focuses on contracts, opt-outs, and consumer disclosures in Healthline settlement

Kelley Drye & Warren LLP on

On July 1, 2025, California Attorney General Rob Bonta announced a $1.55 million proposed settlement order with Healthline Media – the largest California Consumer Privacy Act (CCPA) settlement to date. The proposed settlement...more

Fenwick & West LLP

California AG Secures Record $1.55M CCPA Settlement Against Healthline Over Targeted Ads and Health Data Sharing

Fenwick & West LLP on

On July 1, 2025, California Attorney General Rob Bonta announced a $1.55 million settlement, pending court approval, with Healthline Media, LLC. This settlement is the largest penalty issued to date under the CCPA, as...more

Fisher Phillips

Healthline to Pay $1.55M for Alleged CCPA Violations: Key Lessons for Businesses from Largest Settlement Yet

Fisher Phillips on

Healthline Media has agreed to pay $1.55 million to resolve allegations that it violated the California Consumer Privacy Act (CCPA) – which is the largest settlement to date under the state’s landmark privacy law. The...more

Kelley Drye & Warren LLP

CPPA Drives Home Enforcement Priorities in CCPA Settlement with Honda

Kelley Drye & Warren LLP on

On March 12, 2025, the California Privacy Protection Agency (CPPA) announced a settlement with American Honda Motor Co., resolving allegations that the company violated the California Consumer Privacy Act (CCPA) and requiring...more

Constangy, Brooks, Smith & Prophete, LLP

Data Privacy Day Checklist: Top 10 ways to protect your organization's data

Constangy, Brooks, Smith & Prophete, LLP on

Tomorrow is International Data Privacy Day, so a happy day to all! More seriously, data privacy concerns and legislation continue to rapidly increase. It has been estimated that by the end of 2024 more than 75 percent of...more

Husch Blackwell LLP

California Privacy and AI Legislation Update: October 7, 2024

Husch Blackwell LLP on

Throughout the 2024 legislative session, we have been tracking numerous privacy- and AI-related bills pending in California. Ten of those bills passed the state legislature before the legislative session ended on August 31...more

WilmerHale

California AG Announces Second CCPA Enforcement Action

WilmerHale on

On February 21, the California Attorney General (“AG”) announced a settlement with DoorDash, an online food delivery service, to resolve allegations that the company violated the California Consumer Privacy Act (CCPA) and...more

Constangy, Brooks, Smith & Prophete, LLP

California AG announces second settlement action under CCPA

Constangy, Brooks, Smith & Prophete, LLP on

Last week, the California Attorney General announced its second-ever settlement under the California Consumer Privacy Act, as amended by the California Privacy Rights Act. The settlement was with the online food ordering and...more

Robinson+Cole Data Privacy + Security Insider

California Attorney General Announces Investigation of Streaming Services for CCPA Violations

Robinson+Cole Data Privacy + Security Insider on

Last week, California Attorney General Rob Bonta announced a new enforcement focus on streaming apps’ failure to comply with the California Consumer Privacy Act (CCPA). This investigation will examine whether streaming...more

Perkins Coie

Compliance Next Steps: Employment and B2B Data in California

Perkins Coie on

The exemption for employment-related and business-to-business (B2B) data under California’s privacy law expired on January 1, 2023. Without this exemption, information previously allowed to be excluded now falls within the...more

Benesch

Privacy Points 2023: Contractual Provisions Required as New State Laws Regulate the Sharing and Processing of Personal Information...

Benesch on

The ability to verify compliance with applicable law, notice and opt-out requirements for subcontractors, and flowing through data minimization principles are key requirements under new US state data protection laws. As...more

Eversheds Sutherland (US) LLP

FTC diagnoses common digital practices as both UDAP and breach

Eversheds Sutherland (US) LLP on

In a groundbreaking decision, the Federal Trade Commission (FTC) announced it was diagnosing GoodRx’s use of tracking pixel codes and analytics, its digital strategy, as not only an unfair or deceptive act or abusive practice...more

Ervin Cohen & Jessup LLP

California Privacy Rights and Enforcement Act of 2020

Ervin Cohen & Jessup LLP on

The California Privacy Rights and Enforcement Act of 2020 (the “CPRA”) expands the privacy rights and protections provided to California consumers pursuant to existing state law, including the California Consumer Privacy Act...more

Jackson Lewis P.C.

CPRA Series: Impacts On Notice At Collection And Privacy Policy

Jackson Lewis P.C. on

Already at the cutting edge of U.S. privacy law, California jumped even further ahead of the pack with the recent approval by State voters of the California Privacy Rights Act (“CPRA”). The CPRA, which builds upon the...more

BCLP

Do pharmaceutical companies that sell personal information comply with the requirement to post a “Do Not Sell My Personal...

BCLP on

Yes. While only one of the pharmaceutical companies within the Fortune 500 states that they sell personal information, the company that has disclosed the sale of information is posting a “Do Not Sell My Personal...more

BCLP

Have pharmaceutical companies disclosed whether they “sell” personal information?

BCLP on

Most have, but some have not. While the majority of pharmaceutical companies within the Fortune 500 affirmatively state that they do not sell personal information, a significant minority have been silent, or unclear, about...more

BCLP

Under the CCPA, can a conference organizer transfer personal information of attendees to sponsors?

BCLP on

Yes. Conference and event organizers often provide lists of conference attendees to third parties that sponsor (or exhibit at) the conference.  While nothing within the CCPA prohibits such information from being shared,...more

BCLP

Is information shared with map services considered a “sale” under the CCPA?

BCLP on

Maybe. Many online businesses utilize map services to provide location, distance, and direction information to consumers. The provision of map services inherently requires the business to share consumers’ personal...more

BCLP

Is information shared with “bot” detection services considered a “sale” under the CCPA?

BCLP on

Maybe. Many online businesses utilize “bot” detection services to determine whether actions taken on a website or application have been made by a human or by an automated program (i.e., a “bot”). The provision of bot...more

BCLP

Is information disclosed by a business to a third party that provides services considered a “sale” under the CCPA?

BCLP on

The CCPA broadly defines the term “sale” as including the act of “disclosing” or “making available” personal information “for monetary or other valuable consideration” from one business to another. This arguably could include...more

BCLP

Is the disclosure of personal information for purposes of creating a look-alike audience a “sale” under the CCPA?

BCLP on

Sometimes. Many companies today use “look-alike audiences” (a.k.a “mirror audiences” or “similar audiences”) to reach potential consumers through online advertising. A look-alike audience is created when a business sends...more

Mintz - Privacy & Cybersecurity Viewpoints

CCPA QOTD: Isn’t every vendor a “service provider” under the CCPA?

Mintz - Privacy & Cybersecurity Viewpoints on

The short answer is “no”. The CCPA has a specific definition for “service provider” at Section 1798.140(v) – and it also requires a vendor to be bound by a written contract that prohibits it from...more

BCLP

If a company acquires another company, can it transfer the target’s data to its new affiliates for their marketing purpose?

BCLP on

Federal and state privacy laws do not expressly prohibit most acquirers (e.g., acquirers of a retail brand) from internally transferring the target’s data for use by affiliated companies. That said, in 2000 the Federal Trade...more

Farella Braun + Martel LLP

Is your company covered by California’s new privacy law?

Farella Braun + Martel LLP on

On Jan. 1, 2020, the California Consumer Privacy Act (CCPA), a consumer-friendly privacy law inspired by the European Union’s General Data Protection Regulation, will take effect. Originally published in the North Bay...more

BCLP

CCPA Privacy FAQs: How many companies have included a “Do Not Sell My Personal Information” link on their homepage?

BCLP on

<4% As the CCPA’s effective date approaches, businesses are actively monitoring how companies will update their websites and privacy notices to comply with the new disclosure requirements of the Act.  While many companies...more

29 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide