"6 key ways the California Privacy Rights Act of 2020 would revise the CCPA" by Amanda R. Lawrence, Sherry-Maria Safchuk, Garylene D. Javier, and John Georgievski (Corporate Compliance Insights)
Corporate Compliance InsightsAmanda R. Lawrence, Sherry-Maria Safchuk, John Georgievski
The California Consumer Privacy Act (CCPA), the state’s landmark privacy regulation, became effective only eight months ago – and yet, the California Privacy Rights Act of 2020 (CPRA), a modified version of the CCPA, has garnered enough support to appear on the November 2020 ballot in California. Early polling indicates that Californians are likely to vote in favor of passage, with nearly nine in 10 California voters saying they would support a ballot initiative that expands privacy protections for consumers’ personal information.
The CPRA would make a number of changes to the CCPA, including by expanding consumer rights; creating a new category of “sensitive personal information,” such as financial information (although the Gramm-Leach-Bliley Act exemption is retained); and creating a new state agency to regulate and enforce privacy laws. Businesses should be aware of how the CPRA may modify the CCPA so they can plan now for changes to their compliance plans and privacy practices.