California ‘setting the tone’ for privacy push with CPRA updates
By 
Adrianne Appel2023-03-01T14:00:00
A bill to update California’s landmark data privacy law has only been in effect since Jan. 1, but it is already noteworthy among businesses for the robust protections it offers residents, a slew of new requirements for companies, and a certain amount of ambiguity.
The California Privacy Rights Act (CPRA), which passed as a ballot measure in 2020, expanded on the protections offered by the California Consumer Privacy Act (CCPA), the nation’s first comprehensive state data privacy law. The CPRA established the California Privacy Protection Agency (CPPA) to implement and enforce the law, a change from keeping CCPA oversight with the state attorney general.
Four other states—Colorado, Connecticut, Utah, and Virginia—have approved privacy laws taking effect this year, though none are considered as comprehensive as the California legislation.
Related articles
-
News BriefCPPA sets sights on connected vehicles in first review
The California Privacy Protection Agency is probing the data privacy practices of connected vehicle manufacturers and their technologies as part of its first enforcement review.
-
PremiumCalifornia privacy reg delay offers little more than short reprieve
Many businesses are breathing a sigh of relief following a court ruling that delayed enforcement of certain provisions of the California Privacy Rights Act, but companies should not rest on their laurels, according to experts.
-
PremiumAs final CPRA rules trickle out, a reminder companies must ‘grow with the law’
If companies haven’t started the process of coming into compliance with the California’s sweeping new privacy law, they need to begin now.
More from Regulatory Policy
-
ArticleNYDFS to firms: apply cybersecurity rules to third-parties
The New York State Department of Financial Services (NYDFS) wants financial firms to step up their game when it comes to third parties and cybersecurity.
-
ArticleNavigating HHS and FDA’s overhaul of the food and beverage industry
Under the Trump administration, the Department of Health and Human Services and the Food and Drug Administration have been hellbent on eliminating synthetic food dyes from food and beverage products, forcing a jarring and costly overhaul with cascading impacts on the operations of the entire industry.
-
PremiumU.K. FCA establishes framework for unlisted companies to trade shares on a ‘buyer-beware’ basis
Private companies that are keen to trade their shares but do not wish to become listed have gained another way to trade their shares. The U.K. government completed its initial review and published rules for the system in June.