It is an unprecedented time for California companies’ privacy law obligations. The California Privacy Rights Act (CPRA) took effect on January 1, 2023 with a twelve-month look-back that also applies to the personal data of employees and business contacts. The California Privacy Protection Agency recently finalized regulations and has kicked off a new phase of rulemaking including on risk assessments, cybersecurity audits, and automated decision-making technology (draft regulations on each of these topics have been published). Meanwhile, the California Legislature is enacting privacy laws even though it has not repealed or streamlined any of the myriad California privacy laws that continue to apply in addition to the California Consumer Privacy Act (CCPA).
With this virtual seminar series, privacy specialists from Baker McKenzie offices in California want to help prepare you for new and upcoming privacy compliance tasks in various business areas, in collaboration with other practice groups.
California residents are increasingly exercising data subject rights to access, correct and delete personal information. Companies receive requests from consumers, employees, and organizations that claim to act as “authorized agents.”