California regulators unanimously approved a sweeping set of regulations on July 24 governing the use of automated decision-making technology (ADMT) and mandating risk assessments and cybersecurity audits for businesses...more
Businesses should be aware of recent public outreach in California – and other states with consumer privacy laws – signaling that increased enforcement activity is on the horizon. For instance, the California Privacy...more
On July 14, 2023, California Attorney General Rob Bonta announced an “investigative sweep” through inquiry letters sent to large California employers. The sweep seeks information on companies’ compliance with the California...more
Among the many privacy rights in California, state residents may opt-out of the sale of personal information under the California Consumer Privacy Act (CCPA) – and covered businesses cannot sell personal information after...more
Remember when we used to describe U.S. privacy regulation to our European colleagues as “sectoral” and thus limited to specific industries or circumstances—banking, healthcare, certain employment issues, identity theft, etc.?...more
The California Consumer Privacy Act (CCPA), considered one of the most expansive U.S. privacy laws to date, went into effect on January 1, 2020. The CCPA placed significant limitations on the collection and sale of a...more
Florida is currently considering data privacy legislation that would require covered businesses to implement comprehensive policies and procedures to provide privacy rights to consumers. The proposed legislation, House Bill...more
The California Consumer Privacy Act of 2018 (the “CCPA”) and the related proposed Attorney General Regulations (the “Regulations”) provide California consumers with increased privacy rights and protections with respect to...more