Privacy and Information Security

On Friday, California Governor Gavin Newsom signed seven legislative proposals to amend the California Consumer Privacy Act (CCPA), marking the end of a nearly-yearlong process to make changes to the new privacy law before it goes into effect on January 1st.  The next opportunity to amend the CCPA will be in the 2020

On Thursday, California Attorney General Xavier Becerra released draft regulations implementing the California Consumer Privacy Act (CCPA). The regulations provide the first glimpse into how the Attorney General interprets the sprawling law, which is slated to go into effect on January 1.

The new regulations cover seven topics:

  1. Notices to Consumers: The draft regulations clarify

On a new episode of the Ad Law Access PodcastAlex Schneider discusses the amendments to the California Consumer Privacy Act (CCPA) the California legislature voted to send to the California governor’s desk.

For additional information see the Ad Law Access blog posts:

Last week, the California legislature voted to send five amendments to the CCPA to the California governor’s desk.  The amendments include a one-year exemption for access and deletion rights to employee data and B2B communications; a provision exempting online-only businesses from operating a toll-free number to accept consumer requests; and a new mandate for data

The FTC and the New York Attorney General recently announced a record-setting $170 million ($136 million to the FTC and $34 million to the NY AG) joint settlement with Google. The settlement resolves allegations that YouTube violated the Children’s Online Privacy Protection Act (“COPPA”) and is the largest penalty the FTC has ever received in

Effective January 1, 2020, New Hampshire’s new Insurance Data Security Law will impose certain information security requirements on entities that (1) are licensed under the state’s insurance laws and (2) handle “nonpublic information.” “Nonpublic information” is defined as information that is not publicly available and falls into one of the two following categories:

  1. Information that

Amendments to the California Consumer Privacy Act (CCPA) continued to advance on Monday, as the California legislature returned from its summer recess.  With just five weeks to go until the September 13th deadline for the legislature to pass bills, and fewer than five months until the CCPA is set to take effect, the Senate Appropriations

Even in her extensive dissent, FTC Commissioner Rebecca Slaughter labeled the Order “exceptional.”

And it is.  The terms of the Federal Trade Commission’s (FTC) $5 billion, twenty-year settlement Order reached with Facebook on Wednesday is the agency’s most prescriptive privacy and data security agreement ever.  The Order comes just three days shy of the seventh

The FTC announced today that it is seeking comments on a variety of issues related to the Children’s Online Privacy Protection (COPPA) Rule. Although only six years have passed since the FTC’s 2013 COPPA Rule update, the FTC is initiating an early review in response to new technologies and applicability to certain business sectors, including

New York’s efforts to pass the New York Privacy Act failed when the bill did not appear in the most recent legislative session. The bill, said to be “tougher,” “bolder,” and more “sweeping” than other privacy legislation, initially gained a number of Senate co-sponsors when Sen. Kevin Thomas introduced it, but no Assembly members signed