The California Privacy Protection Agency (the “CPPA”) has issued a Notice of Proposed Rulemaking, as anticipated, for amendments to regulations the California Attorney General promulgated in 2020, and to propose new regulations under the CPPA’s mandate provided in the California Privacy Rights Act. The comment period closes on August 23, 2022. There will be a […]
Regulation
The California Privacy Protection Agency Solicits Public Input on Forthcoming Privacy Regulations
The California Privacy Protection Agency Board began its preliminary rulemaking activities to solicit input on forthcoming regulations under the California Privacy Rights Act (“CPRA”) in September 2021 when it met to review the CPRA rulemaking process. On September 22, 2021 the Agency began soliciting preliminary written public comments. The Agency then held informational sessions on […]
Colorado Issues Pre-Rulemaking Considerations for the Colorado Privacy Act
On April 12, 2022, the Colorado Department of Law (the “Department”) released its Pre-Rulemaking Considerations for the Colorado Privacy Act (the “CPA”), following state Attorney General Phil Weiser’s remarks at the International Association of Privacy Professionals’ (IAPP) Global Privacy Summit in Washington, D.C. The Department seeks informal input on several topics in addition to general […]
EU and U.S. Reach Agreement In Principle on a Replacement for the EU-U.S. Privacy Shield
On March 25, 2022, the European Commission and the United States announced that they have reached an “agreement in principle” on a replacement for the EU-U.S. Privacy Shield, which was invalidated by the Court of Justice of the European Union in 2020. The new framework will be designed to allow personal data to flow freely […]
Senate Passes Significant Cyber Bill Requiring Cyber Incident Reporting
The Strengthening American Cybersecurity Act of 2022, a bill that narrowly failed to become law last year, was passed in the Senate on Tuesday, March 1 as a package of cybersecurity measures that would require operators of critical infrastructure and federal civilian agencies to report cyber incidents to the Department of Homeland Security’s Cybersecurity and […]