Automated decision-making tech rules added to crowded CPPA agenda

By Adrianne Appel2023-12-01T22:34:00

California’s privacy watchdog drafted its automated decision-making technology (ADMT) rules for businesses, including programs that analyze shoppers’ faces and track employees’ locations.

The California Privacy Protection Agency (CPPA) expects to launch the formal rulemaking process for the ADMT rules in early 2024, along with previously released draft rules about cybersecurity audits and data risk assessments.

Public comments will be accepted during rulemaking, the agency said in its announcement Monday.

THIS IS MEMBERS-ONLY CONTENT

JOIN NOW

You are not logged in and do not have access to members-only content.

If you are already a registered user or a member, SIGN IN now.

Premium
What’s on tap for CPPA from its deputy director of enforcement

2024-07-26T12:54:00Z By Adrianne Appel

Michael Macko, deputy director of enforcement at the California Privacy Protection Agency, described priorities for the agency now and in the near future during a recent board meeting.
News Brief
CPPA warns of collecting too much data in first enforcement advisory

2024-04-05T19:40:00Z By Adrianne Appel

The California Privacy Protection Agency warned businesses to stop asking for excessive information from consumers who have requested to opt out of having their data collected or who are otherwise exercising their privacy rights under the California Consumer Privacy Act.
Premium
CPPA preview: Cybersecurity audit regs nearing formal proposal

2024-01-09T20:16:00Z By Adrianne Appel

Companies with business in California could face tough new cybersecurity mandates under draft regulations that could be headed for formal rulemaking as soon as Friday.

More from Regulatory Policy

Article
OCC proposes dropping its ‘recovery plan’ requirements for big banks

2025-11-04T18:52:00Z By Adrianne Appel

Less than a year after a new rule required more of the U.S.’s biggest banks to draft “recovery” plans in case of failure, the rule is on its way out.
Article
Navigate SEC cautiously during shutdown, experts advise

2025-10-31T17:50:00Z By Adrianne Appel

The U.S. government shutdown has brought most operations at the Securities and Exchange Commission (SEC) to a screeching halt, but that doesn’t mean compliance teams should be taking a breather, experts advised.
Article
Complying with the EU Data Act – What companies should know

2025-10-30T19:39:00Z By Neil Hodge

Companies could face significant compliance challenges in trying to meet new EU legal requirements about how companies share data with third parties.

Automated decision-making tech rules added to crowded CPPA agenda

THIS IS MEMBERS-ONLY CONTENT

Related articles

What’s on tap for CPPA from its deputy director of enforcement

CPPA warns of collecting too much data in first enforcement advisory

CPPA preview: Cybersecurity audit regs nearing formal proposal

More from Regulatory Policy

OCC proposes dropping its ‘recovery plan’ requirements for big banks

Navigate SEC cautiously during shutdown, experts advise

Complying with the EU Data Act – What companies should know