Here Comes California Consumer Privacy Act (CCPA): How to Stay Compliant
Intended to enhance consumer privacy rights and data use transparency, the California Consumer Privacy Act (CCPA) of 2018 is regarded as the most comprehensive privacy law in the U.S. The Act, which went into effect on January 1, 2020, imposes stringent privacy requirements with significant impacts on many entities that do business with California residents.
However, with implementing regulations still not finalized, and installation of compliant systems still on-going for many regulated businesses, the best practices for compliance with the CCPA remain uncertain. Thus, businesses must continue to keep themselves abreast of the continuing developments in this area of law. Diligent reassessment and revision of their current data privacy programs is also a key to avoid non-compliance.
Listen as a panel of key thought leaders and practitioners assembled by The Knowledge Group provide the audience with a comprehensive discussion of CCPA. Speakers will present emerging trends, developments, and issues surrounding this topic and offer practical tips and strategies in implementing robust compliance programs.
This LIVE Webcast will discuss the following:
- The Fundamentals of the California Consumer Privacy Act (CCPA)
- Hot Issues and Challenges
- Practical Compliance Tips and Strategies
- What Lies Ahead
Fletcher, Heald & Hildreth PLC
Eversheds Sutherland (US) LLP
- The CCPA gives California residents significant new privacy rights, subject to some exceptions. Those rights include the right to receive a notice of collection, the right to know the categories and specific pieces of personal information collected by the business, the right to delete the personal information collected and the right to opt-out of sale of one’s personal information by the business.
- The proposed regulations acknowledge that when it comes to consumer access and deletion requests, there is an inherent tension between privacy and cybersecurity. Certain data points can never be provided to a requestor. A business must consider the right of harm to the consumer posed by any unauthorized access or deletion.
- The proposed regulations make clear that the CCPA applies to a business that does not collect information directly from consumers, if the business sells a consumer’s personal information. This provision is particularly significant for consumer data resellers and advertising networks.
- Third party cookies present unique issues under the CCPA, particularly if the third party does not qualify as a “service provider” under the law.
Drinker Biddle & Reath LLP
- The parameters of the CCPA mandates on security systems, and how those track onto current US breach notification parameters (those that mandate the implementation of security programs) and those mandated by the GDPR.
- The enforcement parameters of the CCPA – what are the levels of exposure going forward and what are the risks as to the new private rights of action in the breach sector.
- The parameters of the new non-discrimination right – specifically, the issues of “reasonable value” and justifiable differences in service levels (all in the face of the issue of “financial incentives”).
- The interaction of the “alternative format” requirements in light of ongoing ADA compliance trends.
Paul Feldman is Privacy and Telecommunications Law attorney, and a member of Fletcher, Heald & Hildreth PLC, located in Arlington, Virginia, right across the river from Washington, D.C. His Privacy Law practice includes assisting companies in compliance with the California Consumer Privacy Act (CCPA), the Telephone Consumer Protection Act (TCPA), and assisting clients with website privacy policies. His Telecommunications Law practice focuses on the regulation of video services, including cable TV, IPTV and broadcast television; and telecommunications, including wireline and wireless voice, data and broadband Internet services. He has worked with Internet Service Providers and others in connection with Net Neutrality/Open Internet issues.
Mr. Feldman received his B.A. in Philosophy from Columbia University in 1984, and his J.D. from the UCLA School of Law in 1988.
Paul Feldman is Privacy and Telecommunications Law attorney, and a member of Fletcher, Heald & Hildreth PLC, located in Arlington, …
MJ received her doctorate in political science from Columbia University and her J.D., magna cum laude, from the Georgetown University Law Center.
Mary Jane (MJ) Wilson-Bilik is a Privacy and Cybersecurity law partner at Eversheds-Sutherland (US). For more than 25 years, MJ …
Kenneth K. Dort counsels clients on information technology and intellectual property law issues — specifically, data security and privacy, software development and licensing, systems development and integration, trade secret protection and patent/copyright/trademark licensing and protection. He is chair of the firm’s Data Security and Technology Committees.
Ken is CIPP/US, CIPP/E and CIPP/C certified and advises clients throughout the United States, the European Union, South America, the Pacific Rim and Canada on their data security and privacy practices and compliance needs arising under federal, state, provincial and international privacy and data security laws and industry standards. He assists clients with the drafting and implementation of data security and privacy, document retention, device usage and mobile application policies and protocols.
Kenneth K. Dort counsels clients on information technology and intellectual property law issues — specifically, data security and privacy, software …
Print and review course materials
Method Of Presentation:
General knowledge of privacy laws
Unlock All The Knowledge and Credit You Need
Leading Provider of Online Continuing Education
It's As Easy as 1, 2, 3
UNLIMITED 1 Year Pass for only $199
About Fletcher, Heald & Hildreth PLC
Fletcher, Heald & Hildreth is located in Arlington, Virginia, right across the river from Washington, D.C., and specializes in Telecommunications and Privacy Law.
About Eversheds Sutherland (US) LLP
As a global top 15 law practice with 69 offices across 34 countries worldwide, Eversheds Sutherland provides legal advice and solutions to a global client base that includes some of the world’s largest multinationals. Our teams of lawyers around the world operate seamlessly to deliver the legal know-how and strategic alignment that clients need from their advisers to help them further their business interests. As privacy and data protection laws put increasing regulatory and commercial pressure on how companies gather, use and share information, our substantial international team of over 110 data privacy and cybersecurity experts advises our clients on global and national data needs.
For more information, including our locations in Atlanta, Austin, Chicago, Geneva, Houston, London, New York, Sacramento, San Diego and Washington, DC, please visit www.us.eversheds-sutherland.com
About Drinker Biddle & Reath LLP
Drinker Biddle is a top-tier, full service law firm with nearly 575 lawyers across 13 offices, located in cities across the United States and in London. Since 1849, we have built a reputation for outstanding legal results and bring a sophisticated, forward-thinking approach to every client engagement. Over the years we have grown into a firm with a clientele that represents a broad spectrum of public and private, commercial, financial and educational enterprises, governmental authorities and individuals throughout the United States and abroad. We combine a comprehensive range of legal services with significant national roles in industries, including—but not limited to—financial services, insurance, health care, retail, education, and pharma and life sciences. Because of our deep industry knowledge and a commitment to excellence, clients can rely on us to deliver the counsel and insight needed to advise them and to stay ahead of ever-changing regulations.