News & Analysis as of

Cybersecurity California Privacy Protection Agency (CPPA) State Privacy Laws

Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk... more +
Follow this channel for advisories on one of the biggest threats to businesses today. Read a morning brief of fresh guidance and commentary by leading lawyers on security, privacy, risk management, global regulations, data protection, leaks, hacking, cyber insurance, compliance, HIPAA, and every other aspect of cybersecurity of import to corporate readers right now.   less -
Coblentz Patch Duffy & Bass

California Finalizes CCPA Regulations on Automated Decision-Making Technology, Risk Assessments, and Cybersecurity Audits

Coblentz Patch Duffy & Bass on

In July 2025, the California Privacy Protection Agency (CPPA) adopted final regulations governing automated decision-making technology (ADMT), privacy risk assessments, and cybersecurity audits under the California Consumer...more

Sheppard Mullin Richter & Hampton LLP

CPPA Adopts ADMT, Cybersecurity and Risk Assessment Regulations

Sheppard Mullin Richter & Hampton LLP on

The CPPA scratched another task off the to-do list last month when it officially adopted proposed regulations under CCPA. These rules focus on three major areas: automated decision-making technology, risk assessments, and...more

McNees Wallace & Nurick LLC

Following California’s Lead: How the CCPA’s New Rule Guides Compliance Efforts Nationwide

McNees Wallace & Nurick LLC on

When it comes to data privacy and cybersecurity regulation in the United States, California continues to lead the way. The state’s latest updates to the California Consumer Privacy Act (CCPA) show that its rules do more than...more

Baker Botts L.L.P.

The CPPA Finalizes Rules on ADMT, Risk Assessments, and Cybersecurity Audits

Baker Botts L.L.P. on

On 24 July 2025, the California Privacy Protection Agency (CPPA) unanimously approved a long-awaited and -debated rulemaking package that addresses: (i) the use of automated decision-making technology, (ii) mandatory risk...more

Perkins Coie

CPPA Approves Cybersecurity, Automated Decisionmaking, and Risk Assessment Regulations

Perkins Coie on

After years of drafting, discussions, and debates, the California Privacy Protection Agency (CPPA) Board reached a significant milestone in its efforts to bring to fruition regulations that have been in discussion by the CPPA...more

Blank Rome LLP

The BR Privacy & Security Download: August 2025

Blank Rome LLP on

Welcome to this month’s issue of The BR Privacy & Security Download, the digital newsletter of Blank Rome’s Privacy, Security, & Data Protection practice....more

Robinson & Cole LLP

Legal Update: New Updates to CCPA Regulations: California’s Focus on ADMT, Cybersecurity Audits, Risk Assessments, and More

Robinson & Cole LLP on

On July 24, 2025, the California Privacy Protection Agency (CPPA) Board unanimously approved amendments to the California Consumer Privacy Act (CCPA). These substantial changes include new compliance obligations for...more

Herbert Smith Freehills Kramer

Independent Cybersecurity Audits Will Be Required for ‘Significant Risk’ Under CCPA

Herbert Smith Freehills Kramer on

The California Privacy Protection Agency (CPPA) has unanimously adopted new regulations requiring certain businesses subject to the California Consumer Privacy Act (CCPA) to conduct annual audits of their cybersecurity...more

Goodwin

California’s New Privacy and Cybersecurity Regulations on Risk Assessments, Automated Decision making and Cybersecurity Audits:...

Goodwin on

During a Board Meeting on July 24, 2025, the California Privacy Protection Agency (CPPA) unanimously approved the long-awaited final text of its second rulemaking package, implementing a broad swath of new requirements...more

Falcon Rappaport & Berkman LLP

Navigating the Patchwork of State Consumer Privacy Statutes: An E-Commerce Compliance Playbook

Falcon Rappaport & Berkman LLP on

Online retailers now face an increasingly complex matrix of state consumer-privacy statutes that impose prescriptive requirements on data collection, monetization, and cybersecurity practices. ...more

Skadden, Arps, Slate, Meagher & Flom LLP

Eight-State Consortium of Privacy Regulators Marks Shift Toward Coordinated Enforcement

Skadden, Arps, Slate, Meagher & Flom LLP on

In a major development for businesses subject to state data privacy laws, eight state privacy regulators have joined forces to form the “Consortium of Privacy Regulators,” a bipartisan coalition aimed at coordinating...more

Hinshaw & Culbertson - Privacy, Cyber & AI...

Top 6 Takeaways for Privacy Compliance Professionals From the IAPP 2025 Global Summit

Hinshaw & Culbertson - Privacy, Cyber & AI... on

The International Association of Privacy Professionals (IAPP) once again delivered an outstanding 2025 Global Summit. Hinshaw partners and associates were proud to participate in the event and are pleased to provide our...more

Alston & Bird

The Digital Download – Alston & Bird’s Privacy & Data Security Newsletter – February 2025

Alston & Bird on

Publications & Advisories - January 31, 2025 – Kathleen Benway, Maki DePalo, Jennifer Everett, and Hyun Jai Oh published “Privacy, Cyber & Data Strategy Advisory | FTC Finalizes Amendments to COPPA Rule.”...more

Orrick, Herrington & Sutcliffe LLP

CPPA extends comment period for regulations to mid-February 2025

Orrick, Herrington & Sutcliffe LLP on

On January 16, the California Privacy Protection Agency extended the public comment period for its proposed rulemaking package to February 19 due to wildfires affecting the state....more

Orrick, Herrington & Sutcliffe LLP

California Privacy Protection Agency increases fines and penalties for 2025

Orrick, Herrington & Sutcliffe LLP on

On December 17, the California Privacy Protection Agency announced increases in fines and penalties under the California Consumer Privacy Act (CCPA), effective January 1, 2025. The agency’s announcement explained the CCPA...more

Katten Muchin Rosenman LLP

California Regulator Opens Comment Period for Latest Round of Privacy Regulations

Katten Muchin Rosenman LLP on

On November 22, 2024, the California Privacy Protection Agency (CPPA) opened the formal public comment period for its latest proposed rulemaking package. The package includes updates to existing regulations and proposed...more

Kelley Drye & Warren LLP

State Privacy Law Requirements: Instructing Vendors and Partners to Fulfill Deletion and Opt Out Privacy Rights Requests

Kelley Drye & Warren LLP on

Under many circumstances, state privacy laws require businesses to pass a consumer’s valid deletion request to any entity that processes the data on behalf of the business or otherwise is a recipient of the data. These...more

Cooley LLP

CPPA Adopts Data Broker Registration Regulations, Begins Delete Act Enforcement

Cooley LLP on

On November 9, 2024, the five-person board of the California Privacy Protection Agency (CPPA) voted unanimously to adopt the proposed Data Broker Registration regulations without modifications. The new regulations seek to...more

Kelley Drye & Warren LLP

California Privacy Protection Agency expands the definition of ​“data broker”

Kelley Drye & Warren LLP on

On November 8, the California Privacy Protection Agency (CPPA) voted 5-0 to approve new regulations to implement the DELETE Act of 2023. The most noteworthy development was the agency’s adoption of a new definition of...more

Ballard Spahr LLP

CPPA Announces Settlements with Data Brokers for Failure to Register Under the Delete Act

Ballard Spahr LLP on

On November 14, 2024, the California Privacy Protection Agency (“CPPA”), which is tasked with enforcing the California Consumer Privacy Act (the “CCPA”), announced it settled with two data brokers, Growbots, Inc. and UpLead...more

Shook, Hardy & Bacon L.L.P.

California Jumps Into Privacy Rulemaking (Again)

Shook, Hardy & Bacon L.L.P. on

The California Privacy Protection Agency (CPPA) is starting formal rulemaking (again) as they move beyond the pre-rulemaking drafts that were debated for a little over a year. During their November 8, 2024, board meeting, the...more

Carlton Fields

CPPA Advances New Privacy Rules for Businesses

Carlton Fields on

The California Privacy Protection Agency (CPPA), at its board meeting on November 8, 2024, voted 4–1 to advance proposed regulations to a formal rulemaking. As currently drafted, these regulations would, among other things...more

Kelley Drye & Warren LLP

The California Privacy Protection Agency Advances Regulations to Reign in AI, Mandate Security Audits and Risk Assessments, and...

Kelley Drye & Warren LLP on

The California Privacy Protection Agency (CPPA) has signaled it will advance rulemaking at its upcoming November 8 board meeting to place restrictions on the use of automated decision-making technology (ADMT) and impose new...more

Orrick, Herrington & Sutcliffe LLP

California’s CPPA issues advisory on “dark patterns”

Orrick, Herrington & Sutcliffe LLP on

On September 4, the California Privacy Protection Agency (“CPPA”) issued an enforcement advisory warning businesses against using “dark patterns” in their user interfaces. “Dark patterns” are choices a company makes regarding...more

Wilson Sonsini Goodrich & Rosati

Substantial New CCPA Regulations Inch Closer to Reality: A High-Level Overview of the New Requirements and Their Projected $4...

Wilson Sonsini Goodrich & Rosati on

On July 16, 2024, the California Privacy Protection Agency (CPPA) Board met to discuss advancing a substantial draft California Consumer Privacy Act (CCPA) rulemaking package to formal proceedings. The proposed...more

64 Results
 / 
View per page
Page: of 3
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide