The August 31 closing of the California legislative session likely marked the end of hopes for an extension of the limited exemptions for employee and business-to-business (B2B) data that have existed for the California Consumer Privacy Act (“CCPA”) since its inception. As a result, when the the California Privacy Rights Act (CPRA) goes into effect on January 1, 2023, employee and B2B data will be treated the same as consumer data. … Continue Reading
FTC Takes Aim at “Commercial Surveillance”
In an active week for federal regulators, the Federal Trade Commission (FTC) joined the CFPB in announcing important initiatives that may change privacy and data security practices in major ways.
On August 11, the FTC released its Advanced Notice of Proposed Rulemaking, seeking public input on a host of questions relating to what it describes as “commercial surveillance”—or “the business of collecting, analyzing, and profiting from information about people”—in order to determine whether to issue a new rule “to protect people’s privacy and information in the commercial surveillance economy.” … Continue Reading
Initial thoughts about the proposed CPRA regulations
In a surprising development, the California Privacy Protection Agency (CPPA) published proposed amendments to the CCPA regulations recently. The proposed amendments were initially made public in a package of materials to be considered by the CPPA at its upcoming June 8 meeting. The proposed amendments—which in effect are the draft CPRA regulations—were issued without advance notice, ahead of the schedule previously announced by the CPPA. … Continue Reading
Draft California Privacy Rights Act regulations released by CPPA
The California Privacy Protection Agency (“CPPA”) scheduled a Board Meeting for June 8th, in which it will be discussing and possibly taking action with regard to the much anticipated CPRA enforcing regulations. To facilitate this discussion, the CPPA included a draft of the proposed regulations as part of the meeting records. … Continue Reading
Connecticut poised To become fifth state to enact privacy law
Connecticut is the next in a growing list of states to pass comprehensive data privacy legislation. Last Friday, the Connecticut legislature passed, by large margins, Senate Bill 6 — which we are referring to as the Connecticut Data Privacy Act (CTDPA). The law now awaits the Governor’s signature.
The CTDPA follows the form and content of other privacy laws passed in the prior year, including the Colorado Privacy Act (CPA), Virginia Consumer Data Protection Act (VCDPA), and Utah Privacy Act (UPA). … Continue Reading
This week’s podcast: A look at new privacy litigation targeting the sharing of consumer personal data
We discuss the growing trends in privacy litigation, particularly litigation targeting company practices regarding the sharing and sale of consumer personal data, plaintiffs’ liability theories, including the right of publicity, and best practices for companies to consider in order to reduce the risk of privacy claims.
Aliza Karetnick, a Ballard Spahr partner and Leader of the firm’s cross-practice Consumer Products and Retail Team, leads the conversation, joined by Phil Yannella, a Ballard partner and Practice Leader of the firm’s Privacy and Data Security Group, and Greg Szwczyk, a Ballard partner and member of the firm’s Privacy and Data Security Group.… Continue Reading
Utah legislature passes consumer privacy law
Following the lead of California, Colorado, and Virginia, Utah is set to become the fourth state to pass a comprehensive privacy law.
As of March 4, the Utah Consumer Privacy Act (SB 227) cleared both houses of the Utah legislature. The UCPA closely resembles the Virginia Consumer Data Privacy Act, but with some interesting changes. … Continue Reading
Financial trade associations oppose proposed IRS tax reporting requirement
On September 17th, the Consumer Bankers Association, the American Bankers Association, and a large number of other financial trade associations sent a letter to Speaker of the House Nancy Pelosi (D-CA), Majority Leader Kevin McCarthy (R-CA) and other House Members opposing a proposal under consideration as part of the budget reconciliation package that would require financial institutions and other providers of financial services to track and submit to the Internal Revenue Service (IRS) information on the inflows and outflows of every account above a de minimis threshold of $600 during the year, including breakdowns for cash.… Continue Reading
President Biden nominates Alvaro Bedoya to serve as FTC Commissioner
On Monday, the White House announced the nomination of Alvaro Bedoya to serve as FTC Commissioner. Mr. Bedoya is slated to fill the seat on the Commission currently held by Rohit Chopra, which Mr. Chopra will vacate upon his confirmation as CFPB Director. Mr. Chopra is expected to be confirmed as CFPB Director before the end of the year.… Continue Reading
California enforcement updates and privacy tools highlight regulatory scrutiny of right to opt out
With a little over a year of enforcing the California Consumer Privacy Act (CCPA) under its belt, the Office of the California Attorney General (OAG) recently held a press conference to announce updates on its CCPA enforcement efforts and promote new tools relating to California consumers’ right to opt out of the sale of their personal information.… Continue Reading