CCPA: Employee Personal Information on the Chopping Block

How will the California Consumer Protection Act (CCPA) apply to us? This is a question 0rganizations have asked since the CCPA was first proposed. There remains a number of important questions about the scope of the Golden State’s sweeping privacy law that still need to be answered. One of those questions is whether the CCPA … Continue Reading

Washington Poised to Significantly Expand Its Data Breach Notification Law

By Joseph J. Lazzarotti on April 23, 2019 Posted in: California Consumer Privacy Act, Data Breach Notification, Data Security, GDPR, Identity Theft, Information Risk, Written Information Security Program

It was looking like Washington state would be the first state to follow the California Consumer Privacy Act (CCPA), with a GDPR-like law of its own. That effort has stalled, perhaps temporarily. However, both Washington’s House and Senate voted unanimously to send HB 1071 to Gov. Jay Inslee, which would substantially expand the state’s current … Continue Reading

Bill Which Would Expand the CCPA Private Right of Action Moves Forward

By Joseph J. Lazzarotti on April 12, 2019 Posted in: California Consumer Privacy Act, Consumer Privacy, Data Security, Information Management, Information Risk, Online Privacy, Workplace Privacy, Written Information Security Program

As we reported, in late February, California Attorney General Xavier Becerra and Senator Hannah-Beth Jackson introduced Senate Bill 561, legislation intended to strengthen and clarify the California Consumer Privacy Act (CCPA). This week, the Senate Judiciary Committee referred the bill to the Senate Appropriations Committee by a vote of 6-2. This move came despite concerns raised … Continue Reading