California Privacy Rights Act

CPPA and Data Brokers: What You Need to Know

By Odia Kagan on November 18, 2024

The California Privacy Protection Agency is going after data brokers.

The CPPA board voted earlier this month to adopt new regulations regarding data broker registration requirements. If approved, the regulations…

Cookies and Online Merchants: What Can We Learn From California Lawsuits

By Odia Kagan on May 8, 2024

New lawsuits that were recently filed in California echo some of the “cookie” conversations my colleagues and I have been having with online merchants and retail clients.

The fact patterns…

Information Commissioner’s Office Issues Guidance on How to Keep Employment Records: What You Need to Know

By Odia Kagan on January 3, 2024

Flags of USA and European Union — The flags of the United States and European Union.

The United Kingdom’s Information Commissioner’s Office recently issued guidance on how to keep employment records.

This is good advise for employers beyond Europe (and particularly in California). The data…

CPRA Enforcement Is Coming

By Odia Kagan on October 11, 2023

The California Privacy Protection Agency is currently in the middle of multiple, undisclosed investigations, according to the agency’s executive director, Ashkan Soltani.

And that is in addition to the one…

California Is Going for Broke(r)

By Odia Kagan on September 18, 2023

The DELETE Act (SB 362) has passed the California Legislature and is awaiting Governor Gavin Newsom’s signature.

What do you need to know?

You may be a data broker without…

State Privacy Laws and Data Protection Impact Assessments

By Odia Kagan on June 23, 2023

Colorado State Flag On Old Timber — The flag of Colorado on an old wooden background

Assess whether or not you have processes that require conducting a DPIA (these are situations where there

To Best Comply With US Privacy Laws, It Can Be Helpful to Look to Europe

By Odia Kagan on March 15, 2023

Why is the new noyb action against websites and data brokers regarding cookie-based authentication important for compliance with the new U.S. privacy laws?

Because they set out to equivocally confirm…

US Privacy Laws and Legislation: What You Need to Know

By Odia Kagan on February 24, 2023

“The times they are a-changin’,” Bob Dylan sang almost 60 years ago. And when it comes to consumers’ reasonable expectations of privacy, they are still a-changin.

I recently participated in…

CPPA Issues Final Statement of Reasons for Amended CCPA Regulations

By Odia Kagan on February 3, 2023

The California Privacy Protection Agency (CPPA) has issued a Final Statement of Reasons for amended California Consumer Privacy (CCPA) regulations.

Key Points:

The amendments were “necessary” (used 135 times), just…

What Does the EU-US “Draftequacy” Decision Mean for Companies Right Now?

By Odia Kagan on December 19, 2022

If you are a GDPR-compliant company, does that mean you can start doing business in the United States with no additional thoughts about privacy?

As Simon Cowell says: “It’s a…

menu

Privacy Compliance & Data Security