Act

California Consumer Privacy Act (CCPA) | State of California – Department of Justice

Background on the CCPA & the Rulemaking Process

The California Consumer Privacy Act (CCPA), enacted in 2018, creates new consumer rights relating to the access to, deletion of, and sharing of personal information that is collected by businesses. It also requires the Attorney General to solicit broad public participation and adopt regulations to further the CCPA’s purposes. The proposed regulations would establish procedures to facilitate consumers’ new rights under the CCPA and provide guidance to businesses for how to comply. The Attorney General cannot bring an enforcement action under the CCPA until July 1, 2020.

For more information about the CCPA and the rulemaking process, see the following:

Current Rulemaking Activities

2nd Set of Modifications to Proposed Regulations – released March 11, 2020

Deadline to Submit Written Comments: March 27, 2020 at 5 p.m.

Modifications to Proposed Regulations – released February 10, 2020

15 Day Comment Period – ended February

Read More

E-Government Act of 2002

The availability of information, from personal information to public information, is made all the easier today due to technological changes in computers, digitized networks, internet access, and the creation of new information products. The E-Government Act of 2002 recognized that these advances also have important ramifications for the protection of personal information contained in government records and systems.

Privacy Impact Assessments (“PIAs”) are required by Section 208 of the E-Government Act for all Federal government agencies that develop or procure new information technology involving the collection, maintenance, or dissemination of information in identifiable form or that make substantial changes to existing information technology that manages information in identifiable form. A PIA is an analysis of how information in identifiable form is collected, stored, protected, shared, and managed. The purpose of a PIA is to demonstrate that system owners and developers have incorporated privacy protections throughout the entire life cycle of

Read More