On July 8, 2022, the California Privacy Protection Agency (CPPA) issued proposed amendments to the California Consumer Privacy Act (CCPA) regulations to harmonize them with the California Privacy Rights Act of 2020 (CPRA), which will go into effect on Jan. 1, 2023. Individuals or companies have until Aug. 23, 2022, at 5 p.m. to submit comments to the proposed amendments, and a hearing on the proposed amendments will be held on Aug. 24 and 25. Thereafter, the CPPA will have 30 business days to review the comments and publish any changes to the proposed CPRA amendments to the CCPA regulations. If the CPPA’s changes are substantial and sufficiently related to the current text, another 15-day comment period will begin, and if the changes are major, another 45-day comment period will commence. If the agency chooses to enact the rules without such changes, the rules could be finalized by the end of 2022. See California Rulemaking Chart.

Continue reading the full GT Alert.

Print:
Email this postTweet this postLike this postShare this post on LinkedIn
Photo of Darren Abernethy Darren Abernethy

Darren J. Abernethy is a data privacy attorney with more than a decade of experience, including in AmLaw private practice in Washington, D.C. and as in-house counsel at startups and a leading privacy technology vendor. He advises clients on matters related to advertising…

Darren J. Abernethy is a data privacy attorney with more than a decade of experience, including in AmLaw private practice in Washington, D.C. and as in-house counsel at startups and a leading privacy technology vendor. He advises clients on matters related to advertising technology, privacy, data breach management, and FTC best practices.

Darren’s concentrations include the California Consumer Privacy Act (CCPA), the European Union General Data Protection Regulation (GDPR)/ePrivacy, digital advertising, direct marketing, and IP-related transactional matters.

Photo of Gretchen A. Ramos Gretchen A. Ramos

Gretchen A. Ramos is Co-Chair of the Data, Privacy & Cybersecurity Practice and focuses her practice on privacy, cybersecurity, and information management. A creative problem-solver with a long track record of success in commercial disputes, she never loses sight of the simple fact…

Gretchen A. Ramos is Co-Chair of the Data, Privacy & Cybersecurity Practice and focuses her practice on privacy, cybersecurity, and information management. A creative problem-solver with a long track record of success in commercial disputes, she never loses sight of the simple fact that she works in a service industry. Clients appreciate not only her legal skills, but also her direct, no-nonsense approach to client service, including her bullet-pointed emails, snapshot executive summaries, and creativity in finding ways to streamline communications for in-house counsel with dozens of other projects—and little time—on their hands.

Gretchen’s clients come from diverse industries, including technology (SaaS), health care and life sciences, consumer products, manufacturing, academic institutions, and non-profits. She provides clients with practical business advice on compliance with state and federal U.S. laws, GDPR, APEC, and other global privacy laws in relation to their external and internal privacy and security procedures, product and app development, and advertising practices. Gretchen also regularly drafts and negotiates contracts concerning data-related vendors, assists clients in assessing privacy risks in corporate transactions, and provides guidance on and conducts privacy and security assessments. She has managed dozens of data breaches, and helps clients prepare for and immediately respond to security incidents and breaches.

Photo of Sherry Xiaoxuan Ding Sherry Xiaoxuan Ding

Sherry Xiaoxuan Ding is a Data, Privacy & Cybersecurity associate in Greenberg Traurig’s San Francisco office. Sherry advises clients with creative strategies in addressing cross-border privacy and data security compliance issues under regulatory regimes in EU, U.S., and APAC regions, with a focus…

Sherry Xiaoxuan Ding is a Data, Privacy & Cybersecurity associate in Greenberg Traurig’s San Francisco office. Sherry advises clients with creative strategies in addressing cross-border privacy and data security compliance issues under regulatory regimes in EU, U.S., and APAC regions, with a focus on international data transfer. Sherry has designed and implemented privacy governance programs for clients of various sizes against privacy frameworks such as the GDPR, APEC CBPR/PRP Systems, CCPA, the EDAA/IAB Europe OBA Framework, and the China Cybersecurity Law. Sherry’s experience extends to transactional agreements such as data processing agreements, as well as data privacy and information security related provisions in intellectual property (IP) licensing and technology service agreements, in addition to performing privacy impact assessment/DPIA and risk assessments, and monitoring and responding to individual rights requests.

Sherry also has experience with corporate mergers and acquisitions, technology licensing, as well as joint venture related cross broader deals.