On September 5, 2020 the California legislature passed AB 713, amending the California Consumer Privacy Act (CCPA). The bill alleviates some of the burdens imposed on medical research and healthcare operations by the CCPA, and imposes new requirements and restrictions on businesses that sell or disclose de-identified health data. The bill also contains an emergency clause enabling it to take effect immediately upon the governor's approval.
Read more »Tag: california
-
California Seeks to Heal HIPAA & CCPA Divisions with AB 713 Posted on: October 19, 2020 In: Data Privacy & Cybersecurity
-
Legislative Alert: California Passes Genetic Information Privacy Act Posted on: September 24, 2020 In: Data Privacy & Cybersecurity
On August 31, 2020, the California Senate passed SB 980, establishing the Genetic Information Privacy Act, which would require direct-to-consumer genetic testing companies to comply with certain privacy and data security provisions. Whether the Act is ultimately signed into law and made a part of the California privacy landscape remains to be seen. Yet it is the latest effort by The Golden State to impose additional data privacy restrictions and extend rights to consumers concerning personal information.
Read more »
-
California Legislature Extends CCPA Exemptions for Employees’ Personal Information & “Business-to-Business” Exchanges to 2022 Posted on: September 24, 2020 In: Data Privacy & Cybersecurity
But for limited exemptions added to the California Consumer Privacy Act (CCPA) last year, personal information exchanged in the employment context, and personal information collected through “business-to-business” exchanges, would be subject to all requirements of the CCPA. Those exemptions were set to expire next year. However, the California legislature has recently voted, through Assembly Bill 1281, to extend the exemptions until January 1, 2022.
Read more »
-
California AG Submits CCPA Regulations for Final Approval, Paving the Way Toward Enforcement Posted on: June 03, 2020 In: Data Privacy & Cybersecurity
On Monday, June 1, 2020, the California Attorney General’s Office announced that it had submitted the final version of its proposed regulations under the California Consumer Privacy Act (CCPA) to the California Office of Administrative Law (OAL) for review and approval.
Read more »
-
Legislative Alert: California Expands Definition of Personal Information Posted on: November 01, 2019 In: Data Privacy & Cybersecurity
On October 11, 2019, California Governor Gavin Newsom signed into law Assembly Bill 1130, which amends The Information Practices Act of 1977, as well as California Civil Code §§ 1798.29, 1798.81.5 and 1798.82. The bill expands the definition of “personal information” under the California data breach notification statutes applicable to businesses and to government agencies.
Read more »
-
Amendments to the California Consumer Privacy Act Signed Into Law Posted on: October 25, 2019 In: Data Privacy & Cybersecurity
As we near the January 1, 2020 effective date of the California Consumer Privacy Act (CCPA), the California legislature has passed seven amendments to the expansive privacy statute: AB 25, 874, 1130, 1146, 1202, 1355, and 1564. Notably, the amendments alleviate some business concerns by expanding a business’ ability to verify consumer requests under the CCPA.
Read more »
-
CCPA’s Final Requirements in Flux, with Six Months to Go to Comply - Part 3 of 3: Trends and Planning – What it All Means Posted on: June 07, 2019 In: Data Privacy & Cybersecurity
On June 28, 2018, the state of California enacted and then-Governor Jerry Brown signed the California Consumer Privacy Act (CCPA) into law. The CCPA is a robust piece of legislation that substantially expanded the privacy rights of California residents regarding the collection, use, sale, and disclosure of their personal information by certain for-profit businesses that operate or do business in California. The final installment of this three-part series will cover trends and planning.
Read more »
-
CCPA’s Final Requirements in Flux, with Six Months to Go to Comply - Part 2 of 3: General Observations on Pending Amendments to the CCPA Posted on: June 05, 2019 In: Data Privacy & Cybersecurity
On June 28, 2018, the state of California enacted and then-Governor Jerry Brown signed the California Consumer Privacy Act (“CCPA”) into law. The CCPA is a robust piece of legislation that substantially expanded the privacy rights of California residents regarding the collection, use, sale, and disclosure of their personal information by certain for-profit businesses that operate or do business in California. Part 2 of this three-part series will look at pending amendments to the CCPA.
Read more »
-
CCPA’s Final Requirements in Flux, with Six Months to Go to Comply - Part 1 of 3: Where Does the Law Stand Now? Posted on: June 03, 2019 In: Data Privacy & Cybersecurity
On June 28, 2018, the state of California enacted and then-Governor Jerry Brown signed the California Consumer Privacy Act (CCPA) into law. The CCPA is a robust piece of legislation that substantially expanded the privacy rights of California residents regarding the collection, use, sale, and disclosure of their personal information by certain for-profit businesses that operate or do business in California. Part 1 of this three-part series will examine the current state of the law.
Read more »
-
California Legislature Passes Benefit Reimbursement Law for Data Breach Victims Posted on: September 10, 2018 In: Data Privacy & Cybersecurity
The California legislature, in recognizing the vulnerability of state information systems to exploitation by malicious actors, recently passed legislation allowing state benefits to be reimbursed to affected persons if benefits are stolen through a data breach.
Read more »
-
California Enacts Sweeping, EU-Style Privacy Law Posted on: July 06, 2018 In: Data Privacy & Cybersecurity
On June 28, 2018, California Governor Jerry Brown signed A.B. 375 into law, a robust bill that provides substantially broader privacy rights to California consumers regarding how certain businesses can collect, use, sell, and disclose their personal information. The new law requires such businesses to be more transparent in their data collection and sharing practices.
Read more »
-
Proposed Cybersecurity Legislation Casts A Wide Net For U.S. Ports Posted on: November 20, 2017 In: Data Privacy & Cybersecurity
On November 7, 2017, Sens. Kamala Harris, D-Calif., and Dan Sullivan, R-Ark., introduced a bipartisan bill designed to strengthen cybersecurity measures in U.S. ports. The bill, S. 2083, is entitled “Strengthening Cybersecurity Information Sharing and Coordination in Our Ports Act of 2017.” The bill comes in the wake of a ransomware attack in California that disabled the largest terminal in the Port of Los Angeles.
Read more »