At approximately 6:00 p.m. today, March 11, 2020, California Attorney General Xavier Becerra announced a second round of modifications to the draft regulations his office is preparing for the California Consumer Privacy Act (the “Draft CCPA Regulations”). These modifications follow two previous rounds of drafting: (a) the initial publication of the Draft CCPA Regulations, in […]
Privacy
The Updated CCPA Regulations: Alston & Bird Detail the 30 Key Business Impacts
Late last Friday afternoon, California Attorney General Xavier Becerra released updated regulations to the California Consumer Privacy Act (CCPA). The updates contain a number of material modifications to the initial CCPA regulations that AG Becerra’s office released in October 2019. Alston & Bird has compiled a privacy briefing summarizing the 30 key modifications to […]
California Releases Modified CCPA Regulations
On February 7, 2020, the California Office of the Attorney General released Modified Regulations to the California Consumer Privacy Act (“CCPA”). The Modified Regulations update the Initial Proposed Regulations, which were previously published on October 11, 2019. The deadline to submit written comments is February 24, 2020 at 5:00 pm PST. We will follow up […]
NIST Publishes Privacy Framework Version 1.0
On January 16, 2020, the National Institute of Standards and Technology (“NIST”) published Version 1.0 of its Privacy Framework: A Tool for Improving Privacy through Enterprise Risk Management (“Privacy Framework”). A draft version was initially published for public comment on September 6, 2019. The new Privacy Framework is designed to support organizations in building customer’s […]
Schrems 2.0: Standard Contractual Clauses Declared Valid by EU Advocate General
The Advocate General’s Opinion of December 19, 2019 deemed valid the Standard Contractual Clauses (SCCs) adopted by the European Commission for the transfer of personal data from controllers to processors. Currently, many companies rely on SCCs as a mechanism for transferring personal data from the EU to non-EU countries in compliance with the GDPR. […]