US Privacy laws - what to look out for in 2024

A comprehensive overview of recent and upcoming changes



The US regulatory landscape is becoming increasingly complex with state and federal laws being passed or bills being discussed together with various vertical regulations dealing with data protection. One of the landmarks in 2024 is enforcement of the CPRA regulations, which following the recent decision by the Third District Court of Appeals have immediate effect.

Topics to be Covered:

  • Evolving US privacy regulative landscape: state, federal and vertical regulations
  • Enforcement of CPRA regulations: what to expect from now on
  • New data subject rights under CPRA: what you need to know
  • Proposed Regulatory Framework for Automated Decision Making Technology
  • Operationalizing Privacy Laws: – the role of an external DPO in the US
  • Global Outlook: extraterritorial scope and the effect on international businesses

Date: 12th March 2024 Time: 9:00 - 10:00 AM PST



Jordan Fischer, Partner at Constangy

Jordan, a seasoned professional within the Constangy Cyber Team, excels in compliance advisory services, merging legal acumen with technological expertise. As a Cybersecurity Lecturer at the University of California, Berkeley, and a Law Professor at the Thomas R. Kline School of Law, she contributes to academic research, exploring the convergence of law and technology and its practical implications on regional data protection regulations globally. Specializing in data privacy and cybersecurity counsel, Jordan navigates diverse regulatory landscapes, advising on GDPR, CCPA/CPRA, FCRA, DPPA, biometric data laws, global data breach standards, and privacy frameworks. Her certifications—CIPP/E, CIPP/US, and CIPM—attest to her commitment to excellence. Additionally, she serves as a certified trainer for the International Association of Privacy Professionals, further solidifying her expertise and leadership in the field.


Sam Goldstein, Consultant, Senior Director at Project Consulting Group.

Sam supports PCG clients by performing privacy compliance gap assessments, leading remediation projects to operationalize privacy capabilities, and serving as External DPO. Sam has worked with dozens of companies – small and large – across many industries ranging from Lifesciences and Clinical Research to Health Tech, Financial Services, Consumer Goods, Cybersecurity, Transport and Logistics, and more.


Scott Hall, Partner at Coblentz Patch Duffy & Bass LLP

Scott Hall is a privacy and litigation partner and leads Coblentz’s Data Privacy & Cybersecurity practice. He advises clients in connection with regulatory compliance for federal and state privacy laws, including the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA), as well as other U.S. federal and state laws. He also advises companies on data privacy implications of business transactions, assists companies in responding to data breaches, and counsels clients accused of violating data privacy laws, including in litigation. Scott is certified by the International Association of Privacy Professionals (IAPP) as a Certified Information Privacy Professional for U.S. laws and regulations (CIPP/US) and for European laws and regulations (CIPP/E), including the GDPR. He is a frequent author and speaker on privacy and cybersecurity-related topics.


Dr. Andreas Mätzler, CEO at Prighter

Andreas is a data privacy Attorney and Founder and CEO at Prighter. He holds privacy certificates from various institutions including CIPP/E, CIPM, FIP and worked as DPO for banks, financial institutions, tech, and healthcare companies. His deep understanding of data protection matters and different privacy regulations combined with an entrepreneurial hands-on approach enables clients to operationalise global privacy.