Legacy of CCPA: A blueprint for prioritizing compliance
By 
Kyle Brasseur2023-03-02T14:00:00
Three years in, the promise of the California Consumer Privacy Act (CCPA) remains unfulfilled.
The law expected to rein in the questionable data protection practices of Silicon Valley tech giants has resulted in a fine against a company just once, when cosmetics retailer Sephora was penalized $1.2 million in August for failing to comply with customer data sale notification and opt-out request requirements. Not quite the bite people were expecting.
And yet, the expanding U.S. data privacy legislation landscape is better for this approach. When four additional states—Colorado, Connecticut, Utah, and Virginia—begin enforcing their respective privacy laws this year, they have a blueprint to follow for what these kind of bills should prioritize: compliance.
Related articles
-
News BriefDoorDash fined $375K in second public CCPA enforcement
Food delivery company DoorDash agreed to pay a $375,000 fine as part of a settlement announced by California Attorney General Rob Bonta addressing alleged violations of the California Consumer Privacy Act.
-
News BriefCCPA first state privacy law deemed adequate by Dubai financial hub
The Dubai International Financial Centre announced the California Consumer Privacy Act passes muster, allowing compliant California businesses to be the first permitted to transfer data with the DIFC without additional contractual measures.
-
News BriefCourt delays enforcement of CCPA changes to March 2024
Changes to the California Consumer Privacy Act expected to take effect July 1 have been stayed until March 2024 following a ruling from the Sacramento County Superior Court.
More from Opinion
-
NewsThe Banks behind Jeffrey Epstein: Why the story matters now more than ever
The Epstein case remains a defining moment for financial institutions. As new investigations bring renewed attention to his enablers, Compliance Week’s 2024 case study offers not only a timeline of failures but a path forward. Here’s what banks, regulators, and compliance teams must learn from it.
-
OpinionA friend for the compliance officer: Co-thinking with AI
At their core, compliance officers are problem-solvers. They wrestle with thorny questions every day: How do we implement a global gifts-and-entertainment policy across jurisdictions with vastly different cultural norms? How do we balance business pressures with anti-corruption obligations? How do we address new risks like AI itself?
-
OpinionCross-border compliance: Lessons from the UAE for a globalized financial system
Financial ecosystems are no longer confined within national boundaries. Money, technology, and risks flow seamlessly across jurisdictions, creating unprecedented challenges for compliance officers. From sanctions and anti-money laundering (AML) obligations to the rise of virtual assets, the compliance function must now navigate a complex, cross-border landscape where regulators, institutions, and ...