On October 23, 2019, New York’s new breach notification provisions came into effect, a result of New York’s passage of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act) in July. That Act overhauled New York’s data privacy framework, expanding the list of data elements that are considered “private information” while growing the […]
Privacy and Cybersecurity
Alston & Bird Details 21 Potentially Significant Impacts from Draft CCPA Regulations
Late last week, the California Attorney General published much-anticipated proposed Regulations under the California Consumer Privacy Act (“CCPA”). The Regulations are extensive and contain a number of potentially material business impacts. To help companies work through the Regulations, Alston & Bird’s Privacy & Data Security team published a client advisory outlining “21 Potentially Significant Business […]
California Releases Proposed CCPA Regulations
California Attorney General Xavier Becerra released yesterday a Notice of Proposed Rulemaking Action and Proposed Regulations for the California Consumer Privacy Act. The Attorney General will hold four public hearings to address these regulations on December 2, 3, 4, and 5, 2019. The written comment period will then end on December 6, 2019. These regulations are intended […]
California Passes Several Amendments to the California Consumer Privacy Act
The California legislature passed several amendments to the California Consumer Privacy Act of 2018 (Cal. Civ. Code §§ 1798.100 to 1798.190) (the “CCPA”) on September 13, 2019. (For additional background, see Which CCPA Amendments Made the Cut? and Potential Changes to the CCPA; California Senate Considers Amendments). These amendments will soon head to Governor Newsom’s desk for […]
The CCPA Could Reset Data Breach Litigation Risks
A&B Abstract: While much has been written about the California Consumer Privacy Act (CCPA), the focus has primarily been on the new rights it affords California consumers to have access to and control use of their data and opt out of many transfers to third parties. While this is a sea change in data privacy […]