News & Analysis as of

California Consumer Privacy Act (CCPA) Data Subject Access Requests

The California Consumer Privact Act (CCPA), effective January 1, 2020, enhances privacy rights and consumer protections of California residents. Follow this channel for latest guidance and updates on the CCPA,... more +
The California Consumer Privact Act (CCPA), effective January 1, 2020, enhances privacy rights and consumer protections of California residents. Follow this channel for latest guidance and updates on the CCPA, including implications for business conducting business in California.  less -
WilmerHale

California Privacy Protection Agency Issues First-Ever Enforcement Advisory

WilmerHale on

On April 2, the California Privacy Protection Agency (CPPA or “the Agency”) issued the Agency’s first-ever enforcement advisory. The advisory (“Applying Data Minimization to Consumer Requests”) reaffirms data minimization as...more

WilmerHale

CPPA Publishes Additional Proposed Regulations - Including Proposed Revisions to CCPA Regulations - For Discussion at December...

WilmerHale on

In the run-up to this Friday’s December Board meeting, the California Privacy Protection Agency (CPPA or the “Agency”) has continued its recent flurry of regulatory activity. Late last week, the CPPA published an additional...more

Fisher Phillips

7 Steps to Comply with the CCPA

Fisher Phillips on

Getting into compliance with the California Consumer Privacy Act (CCPA) can seem like an overwhelming task. After all, the law is comprised not only of a dense statute and detailed regulations, but the amendment effective...more

Eversheds Sutherland (US) LLP

California’s CPRA rulemaking focuses in on automated decision-making tools

Eversheds Sutherland (US) LLP on

On March 27, 2023, the California Privacy Protection Agency (CPPA) will close its second phase of rulemaking on automated decision-making (ADM) systems under the California Privacy Rights Act (CPRA)— but not before giving...more

Benesch

Privacy Points 2023: Contractual Provisions Required as New State Laws Regulate the Sharing and Processing of Personal Information...

Benesch on

The ability to verify compliance with applicable law, notice and opt-out requirements for subcontractors, and flowing through data minimization principles are key requirements under new US state data protection laws. As...more

Reveal

Data Subject Access Requests (DSARs): Everything Corporate Legal Teams Need to Know

Reveal on

Data is what makes the modern business world go around. But as the amount of data that organizations collect and process grows, so, too, do concerns about data security and how organizations respond to DSARs. These...more

Reveal

DSAR Demystified: What Corporate Counsel Need to Know About Data Protection Laws

Reveal on

Data protection laws, such as the European Union’s General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA), are a major cause for concern for organizations. These data privacy laws have...more

HaystackID

[Webcast Transcript] The State of US Privacy Law: What to Expect in 2023 and Beyond

HaystackID on

Editor’s Note: On September 29, 2022, HaystackID shared an educational webcast on the topic of US privacy law. As privacy continues to move to the forefront of not only information consideration but of business concern for...more

Fox Rothschild LLP

If You Don’t Want It Released to an Employee, Don’t Put It in Your Employee Files

Fox Rothschild LLP on

The old saying went that “if you don’t want it on the front page of the newspaper, don’t put it in an email.” Well, if you don’t want to produce it as part of an employee’s Data Subject Access Request (DSAR), it shouldn’t be...more

Reveal

DSARs Demystified: What Corporate Counsel Need to Know About Data Protection Laws

Reveal on

Data protection laws, such as the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) are a major cause for concern for organizations. While the biggest fines garner headlines, such as...more

Hanzo

Compliance With Data Privacy Laws: Are You Prepared for Data Requests That Implicate Slack?

Hanzo on

In the last few years, data privacy laws and regulations have been big news. Much of the coverage—including one of our recent blog posts—concerned website compliance. Companies scrambled to post notices and forms on their...more

BCLP

CCPA’s Third Amended Regulations

BCLP on

On March 15, 2021, California Attorney General, Xavier Becerra, announced additional California Consumer Privacy Act (CCPA) regulations. These new changes went into effect on March 15, 2021....more

Epiq

How Data Mapping Can Drive Compliance with Global Privacy Laws

Epiq on

As consumer privacy continues to be a global concern, it is increasingly important to know where company data resides in order to maintain compliance. It is no longer just the European Union’s General Data Protection...more

Bradley Arant Boult Cummings LLP

Why Some Data Subject Request Services Create Compliance Concerns

Bradley Arant Boult Cummings LLP on

If you are responsible for handling data subject requests made pursuant to the EU General Data Protection Regulation or verified consumer requests made pursuant to the California Consumer Privacy Act, chances are you have...more

Reveal

You Need Only Two Letters Today to Keep Up with the “Alphabet Soup” of Compliance

Reveal on

Back in November, I wrote on this blog about Big Data being one of the challenges that is forcing technology to move more to the data sooner in the discovery process. One of the most notable fun facts that illustrate just how...more

NAVEX

Global Privacy Regulations: Hot Spots to Watch in 2021

NAVEX on

When it comes to data privacy law, change is the only constant. The global pandemic unleashed a new set of risks related to data privacy that companies will have to confront in 2021. But despite the COVID chaos, data privacy...more

Onna Technologies, Inc.

How to Maintain CCPA Compliance in the Cloud

Onna Technologies, Inc. on

As more organizations find themselves under scrutiny for the way they collect and use consumer data, maintaining CCPA compliance has never been more important. CCPA has been introduced to give control back to consumers,...more

BCLP

Are the verification requirements for access and deletion requests the same under the CCPA as they are under the GDPR?

BCLP on

No. Both the CCPA and the GDPR provide individuals with a right to request access to their personal information and a right to request the deletion of their personal information. As a result, businesses that field rights...more

BCLP

What do most companies include in a CCPA data access policy or procedure?

BCLP on

While businesses are not required to create a written policy or procedure for processing access requests, some businesses – particularly those that receive high volumes of such requests – choose to create such a policy. If...more

BCLP

In response to an access request, does a company have to produce its internal notes relating to an individual?

BCLP on

Maybe. The CCPA requires a business to respond to an access request by disclosing all information that it has “collected” about a consumer in the previous 12 months. Unlike the CCPA’s treatment of a business’s obligation...more

BCLP

In response to an access request, does a company have to produce its own work product?

BCLP on

Maybe. The CCPA requires a business to respond to an access request by disclosing all information that it has “collected” about a consumer in the previous 12 months. Unlike the CCPA’s treatment of a business’s obligation...more

BCLP

California Consumer Privacy Act Practical Guide - February 2020

BCLP on

As one of the oldest and most recognized data privacy and security practices, we have had the honor of helping dozens of companies set up and evolve their data privacy programs over the past decade. That experience has given...more

WilmerHale

California Attorney General Publishes Revisions to Proposed CCPA Regulations

WilmerHale on

On February 7, 2020, California Attorney General Xavier Becerra (the California AG) proposed revisions to the regulations implementing the California Consumer Privacy Act (CCPA) that his office had first proposed on October...more

NAVEX

Data Privacy Is Not a Law, It’s a Lifestyle

NAVEX on

The words “hodgepodge” and “patchwork” are overused in the world of risk and compliance, but they’re certainly appropriate for describing the myriad data privacy regulations popping up around the world. In 2018, the world...more

BCLP

January 2020: Survey of the Restaurant Industry’s Privacy Practices

BCLP on

With the enactment of the European General Data Protection Regulation (“GDPR”) and the California Consumer Privacy Act ("CCPA”), the restaurant and food service industry has been forced to cope with a shifting privacy...more

36 Results
 / 
View per page
Page: of 2
Next »

"My best business intelligence, in one easy email…"

Your first step to building a free, personalized, morning email brief covering pertinent authors and topics on JD Supra:
Sign up Log in
*By using the service, you signify your acceptance of JD Supra's Privacy Policy.
- hide
- hide