Calif. Privacy Updates Seen as a Shift Toward Broader Data Security Regulation
Recent amendments to the California Consumer Privacy Act and the California Privacy Protection Agency’s ongoing rulemaking efforts mark a shift toward “stronger enforcement and broader data-security obligations,” attorneys from Ervin Cohen & Jessup said in a post Friday.
Sign up for a free preview to unlock the rest of this article
Privacy Daily provides accurate coverage of newsworthy developments in data protection legislation, regulation, litigation, and enforcement for privacy professionals responsible for ensuring effective organizational data privacy compliance.
The firm noted CalPrivacy’s newly announced “monetary thresholds and increased civil penalties” for CCPA violations, as well as July updates to the CCPA (see 2512050054). Those updates, effective in January, include new mandatory cybersecurity audits, “risk assessments for automated decision-making technology” and “expanded rights for consumers related to algorithmic processes.”
Privacy regulation is “increasingly becoming about data security, algorithmic transparency, and enhanced consumer rights,” they wrote. “Companies that act now to build resilient internal frameworks geared toward compliance will be well positioned to avoid heightened regulatory scrutiny and investigations, and reduce litigation risks in the future.”