Privacy Law Section

On October 21, 2021 the California Privacy Protection Agency (CalPPA) gave formalnotice to the Attorney General that the CalPPA is prepared to assume rulemaking responsibilities under the CCPA. Read more

On June 8, the California Privacy Protection Agency (CPPA) voted to move forward with California Privacy Rights Act (CPRA) rulemaking. CPPA Chairperson Jennifer Urban will present during this webinar what the CPPA seeks to accomplish with this rulemaking and what we can expect to see in the proposed draft regulations. Chairperson Urban will also address the timeline for public comments, what types of comments the Board is seeking and describe the enforcement authority the CPPA and the California Office of the Attorney General will share once the CPRA becomes operative on January 1, 2023. Read more

2022 is a pivotal year for businesses when it comes to privacy compliance. Current business practices, many shaped by the CCPA, will need to change to account for the CPRA. Among other material changes, the laws require adjustments to how businesses treat ad tech data disclosures, the contracts they must enter into with third parties, and important limitations on activities that can be performed by service providers. Read more

CLA’s Privacy Law Section summarizes important developments in California privacy and beyond. Read more

On April 28, 2022, the United States with 60-plus partners from around the globe launched The Declaration for the Future of the Internet. This Declaration sets out the vision and principles of a trusted Internet. Read more

On Thursday, April 21, 2022, the U.S. Department of Commerce released a statement by Commerce Secretary Raimondo on the Establishment of the Global Cross-Border Privacy Rules (CBPR) Forum. Read more

On April 13, The California Privacy Protection Agency (CPPA) announced it will hold Pre-Rulemaking Stakeholder Sessions via Zoom video and telephone conference. The stakeholder sessions will be held on May 4th, May 5th, and May 6th, 2022. These sessions are intended to provide stakeholders to speak on topics relevant to the upcoming rulemaking, assisting the Agency as it develops regulations. Read more

On April 1, 2022, Japan is set to begin enforcement on the amendment to its Act on the Protection of Personal Information (“APPI”). The APPI was originally adopted in 2003 – making it one of the first data protection regulations. However, with the passing of the EU’s General Data Protection Regulation (“GDPR”) and China’s Personal Information Protection Law (“PIPL”), Japan has now overhauled its own data protection law in order to meet the current privacy climate. Read more

On March 23, 2022, the Oklahoma House passed the Oklahoma Computer Data Privacy Act (HB 2969) 74-15. However, HB 2969 failed to advance past the Senate Judiciary committee in April 2022. Senator Julie Daniels (R-Bartlesville), who chaired the Senate Judiciary meeting, declined to grant the bill a hearing. Read more

May 2022 By Alyona Eidinger As it was reported in the February issue of the Privacy Law Review, Senator Bob Wieckowski  introduced SB 1189, or Biometric Information, a measure in the California Senate on February 17, 2022. This bill, partially based on the Illinois’s Biometric Information Privacy Act (“BIPA”), establishes very specific rules for collection, disclosure, and sale of biometric information by a “Private Entity.” The definition of the private entity is very broad and includes “an individual, partnership, corporation,… Read more