Latest Posts
Search for:
Tag

US State Laws

Browsing
In California Privacy Law

User-enabled privacy controls under CCPA regulations

by and 11 Mins Read

Many digital advertising arrangements that companies commonly use may qualify as “selling” or “sharing for cross context behavioral advertising” personal information under the California Consumer Privacy Act (CCPA) in California and laws in a few other US states (Nevada, Virginia, Colorado, Connecticut, Utah). Businesses state in their online privacy disclosures whether they sold or shared personal information in the last 12 months and whether they will sell or share personal information. Businesses that “sell” or…

In California Privacy Law

Virginia Consumer Data Protection Act takes effect in 2023

by , , and 9 Mins Read

Companies around the world have to comply with the Virginia Consumer Data Protection Act (VCDPA) with respect to personal data of consumers in Virginia. With the VCDPA, Virginia follows the California Consumer Privacy Act of 2018, as amended by the California Consumer Rights Act of 2020 (CCPA) but excludes employee and business representative data from its scope. Businesses that have implemented measures to comply with the CCPA can leverage some of their existing vendor contract terms, website…

In California Privacy Law

Employers preparing for CCPA compliance, what to do now

by , and 6 Mins Read

In less than two months, on January 1, 2023, the California Consumer Privacy Act (CCPA) as revised by the California Privacy Rights Act (CPRA) will take effect fully in the job applicant and employment context. And with respect to job applicants and personnel, businesses subject to the CCPA will be required to (i) issue further revised privacy notices, (ii) be ready to respond to data subject requests, (iii) have determined if they sell or share…

In California Privacy Law

Comparing the Colorado Privacy Act with the California Consumer Privacy Act

by , , and 11 Mins Read

Businesses that have implemented measures to comply with the California Consumer Privacy Act of 2018, as amended by the California Consumer Rights Act of 2020 (“CCPA”) can leverage some of their existing vendor contract terms, website disclosures and data subject rights response processes to satisfy requirements under the Colorado Privacy Act (“CPA”). However, the CPA, and the recently published proposed CPA Rules, (located here), contain certain unique and prescriptive requirements that may warrant taking a…

In California Privacy Law

California Privacy Agency Releases Modified Proposed Regulations

by , , , and 6 Mins Read

This week, the California Privacy Protection Agency (“CPPA”) released modified proposed regulations (“Modified Regulations”) for compliance with the California Consumer Privacy Act (“CCPA”) and the California Privacy Rights Act (“CPRA”), and an explanation of the proposed changes, ahead of its upcoming Board Meetings. It is expected that the CPPA will discuss, and possibly adopt or modify further, the Modified Regulations during the CPPA Board Meetings which are scheduled for October 21-22 and October 28-29, 2022.…

In Data Privacy

Global Data Protection 2022 presented by the Practising Law Institute (PLI)

by , and 1 Min Read

On Tuesday, October 11, 2022, members of Baker McKenzie’s Global Data Privacy and Security Team, including Brian Hengesbaugh, Harry Valetk and Elizabeth Denham, presented at the Global Data Protection Program 2022 hosted by the Practising Law Institute. The program boasted an impressive line-up of data privacy experts from both government and industry to share practical insights. The half-day program was comprised of the following four segments: Introduction and Legislative Developments in Data Protection Laws Nuts and Bolts…

In California Privacy Law

United States: How to Comply with Utah Privacy Law?

by , and 8 Mins Read

Businesses that have implemented compliance measures to comply with the California Consumer Privacy Act of 2018, as amended by the California Consumer Rights Act of 2020 (“CCPA”) can leverage existing compliance mechanisms designed to comply with the CCPA to satisfy requirements under the Utah Consumer Privacy Act (“UCPA”), which will become operative on December 31, 2023. Most companies will not need to expand the scope of their CCPA-focused privacy notices to cover Utah residents exactly…

In California Privacy Law

United States: How to Comply with Nevada Privacy Law?

by , , , , and 8 Mins Read

Businesses that have implemented compliance measures to comply with the California Consumer Privacy Act of 2018, as amended by the California Consumer Rights Act of 2020 (“CCPA”) can leverage existing vendor contract terms, website disclosures and data subject right processes to satisfy requirements under Nevada’s Revised Statutes Chapter 603A (www.leg.state.nv.us/Division/Legal/LawLibrary/NRS/NRS-603A.html). Most companies will not need to expand the scope of CCPA-focused privacy notices, because the Nevada laws are much more narrowly framed. But, companies may…

In Data Privacy

CCPA/CPRA grace period for HR and B2B ends Jan. 1

by and 9 Mins Read

*Article originally posted on IAPP.org* On Aug. 31, hopes were dashed when the California legislative session ended without enacting Assembly Bill 1102. The bill would have extended grace periods for certain business-to-business and human resources personal information under the California Consumer Privacy Act as amended by the California Privacy Rights Act. CCPA/CPRA will become fully operational on Jan. 1, 2023, for B2B and HR personal information and will be subject to the same rigorous California privacy regulations…

In Data Privacy

Connecticut Set to Enact New Privacy Law

by and 2 Mins Read

On April 28, 2022, the Connecticut State House passed Senate Bill (‘SB’) 6 for An Act Concerning Personal Data Privacy and Online Monitoring (‘the Act’), following its earlier passage by Connecticut’s Senate.  If enacted, the Act would take effect on 1 July 2023. Like California, Virginia, and Colorado, the Act would include several consumer rights, including the rights of access, correction, deletion, data portability, and the right to opt-out of targeted advertising, the sale of…

Load More