California cybersecurity audit rule scope begins taking shape at CPPA meeting
By 
Adrianne Appel2023-09-12T12:41:00
A final version of California’s cybersecurity audit rules likely won’t be released until later next year at the earliest, according to a rough timeline discussed by the state’s privacy rulemaking agency, which debated a preliminary draft of the rules Friday.
The draft cybersecurity rules were approved among sweeping amendments to the state’s 2020 data privacy law under the California Privacy Rights Act. The changes to the California Consumer Privacy Act (CCPA) created the California Privacy Protection Agency (CPPA) to write and enforce the rules.
The five-member CPPA board mainly debated two aspects of the cybersecurity rules Friday: which businesses should be required to conduct annual audits and what should be included in those audits.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
PremiumCPPA preview: Cybersecurity audit regs nearing formal proposal
Companies with business in California could face tough new cybersecurity mandates under draft regulations that could be headed for formal rulemaking as soon as Friday.
-
PremiumAutomated decision-making tech rules added to crowded CPPA agenda
The California Privacy Protection Agency drafted its rules to apply the rights allowed to residents under the California Consumer Privacy Act to automated decision-making technology used by businesses.
-
PremiumModern-day enterprises: How to prepare for and prove network compliance
The need to prove network compliance is intensifying as lawmakers introduce new privacy legislation and organizations update their contractual security requirements for third-party vendors.
More from Regulatory Policy
-
News BriefNot just for the rich: SEC may make closed-end funds available to retail investors
Securities and Exchange Commission Chair Paul Atkins indicated he favors changing the agency’s requirement that only the wealthy can invest in so-called “closed-end” private equity funds and hedge funds.
-
Basic PageDOJ shutters FBI unit that investigated Trump and 2020 election interference
The Department of Justice (DOJ) has shuttered a special Federal Bureau of Investigation (FBI) unit that focused on public corruption and whose legwork led to the special counsel investigation of President Donald Trump for trying to overturn the 2020 election results.
-
News BriefTrump administration launches pressure campaign against EU Digital Services Act
The Trump administration is preparing to ask the European Union to alter or water down its rules on content moderation on social media, claiming that they hurt the competitiveness of American technology companies.