California Consumer Privacy Act

Subscribe to California Consumer Privacy Act
CCPA HIPAA PHI Biomedical Research

“In California we are rebalancing the power dynamic by putting power back in the hands of consumers. I encourage all Californians to take a moment to understand their new rights and exercise these rights to take control of their personal data,” wrote California Attorney General Xavier Becerra.

“Becerra has issued an advisory for consumers highlighting

GDPR Facial Recognition

“Adequacy” seems to be the hardest word.

On the brink of Brexit and the UK becoming a “third country” without a so called “adequacy” status for the cross border transfer of personal data from the European Union — Could California have its own Privacy Shield arrangement separate from the rest of the U.S.?

This question

CCPA HIPAA PHI Biomedical Research

On the sixth day of CCPA the California Senate Health Committee gave to me … a HIPAA carve-out.

AB 713, reported favorably by the California Senate Health Committee, would expand the exemption related to HIPAA and medical research.

Specific carve-outs:
  • De-identified PHI or medical information, provided that the business does not attempt nor actually re-identify

“Though it’s hard to predict what will happen with regard to a federal privacy bill in 2020, the reality is that the CCPA is here and other states will surely follow,” writes Jedidiah Bracy of the International Association of Privacy Professionals.

“In addition to driving policy talks in the nation’s capital, the CCPA may also

CCPA HIPAA PHI Biomedical Research

The Digital Advertising Alliance (DAA) announced that its web- and app-based tools are expected to go live on Jan. 1, 2020, as the California Consumer Privacy Act (CCPA) takes effect.

The web-based tool will enable consumers to express an opt out from sale of their personal information, including its use for interest-based advertising, by companies

shutterstock_1048545287

California Attorney General Xavier Becerra released the title and summary for the CCPA 2.0 ballot initiative, the California Privacy Rights Act.

Key provisions:
  • Right to amend inaccurate information
  • Right to restrict the use of “Sensitive Personal Information” which includes finances, race, biometric information or information revealing health status or precise location.
  • Data minimization (collect only

shutterstock_1048545287

A sale by any other name, part 2.

Consumer rights advocates want the California Attorney General to clarify the definition of “sale.”

“The Attorney General should promulgate regulations reflecting that the transfer of data between unrelated companies for any commercial purpose falls under the definition of sale, so that consumers can opt-out of the sharing

CCPA HIPAA PHI Biomedical Research

The CCPA regs, they are not-a-changing.

California Attorney General Xavier Becerra doesn’t plan to make major changes to rules he proposed in October to enforce California’s new privacy law before issuing a final set of regulations.

“’That initial public disclosure of our proposed regs gives everyone a sense of where we think we should go,’

CCPA HIPAA PHI Biomedical Research

“If you’re going to see real enforcement — aggressive, early, decisive enforcement action — early on, it will deal with kids,” said California Attorney General Xavier Becerra, speaking during a news conference

Additional key takeaways:

Enforcement priorities:

  • Sensitive information like health data, Social Security numbers and dating patterns
  • Children’s information (parental consent for under 13

shutterstock_1032732262

Colorado should enact a privacy law to hold tech companies accountable for consumer harms because the federal government isn’t likely to adopt a measure, the state’s attorney general, Phil Weiser (D), said in a Dec. 9 interview with Bloomberg Law.

“It’s likely we pass a privacy law” in Colorado in 2020 that would provide