Blog
CCPA: Managing Consumer Rights - CPRA regulations now enforceable
Those organizations rushing before 1 July 2023 to put compliance measures in place in time for the original enforcement date of the California Privacy Rights Act regulations (CPRA regulations) will have taken comfort in the last-minute decision by Sacramento County Superior Court last June to push enforcement back to 29 March 2024. However, the decision last week by the California Third District Court of Appeals means that the California Privacy Protection Agency (CPPA) can immediately begin to enforce the CPRA regulations, which include detailed rules on consumer privacy rights request handling, opt-out mechanisms for sale/sharing of data and the mandatory recognition of opt-out signals. From now on, we can expect to see a step up in enforcement activity and an increase in sanctions.
Andreas Maetzler, Charlotte Mason
New Milestone Achieved in AI Governance
EU member states have unanimously voted for the Artificial Intelligence Act forward, setting the stage for changes in global AI regulation.
This decision, endorsed by all EU member states in COREPER, marks a crucial step forward despite recent concerns voiced by key stakeholders. European Commissioner Thierry Breton has commended the agreement for its balanced approach, fostering trust and innovation and ensuring the protection of citizens’ rights.
🤝 EU-Japan Agreement on Cross-Border Data Flows: An Important Leap in Digital Collaboration
The EU and Japan have officially inked a landmark deal on cross-border data flows, marking an important step to drive digitalization across societies and economies. This agreement will seamlessly integrate into the EU-Japan Economic Partnership Agreement (EPA), representing a significant milestone in forming stronger ties between the EU and Japan.
California AG Bonta Investigates Streaming Services for CCPA Compliance
California Attorney General Rob Bonta has announced an investigation into popular streaming services for potential California Consumer Privacy Act (CCPA) violations. The focus is on ensuring compliance with CCPA’s opt-out requirements for businesses selling or sharing consumer personal information.
EDPB Launches Website Auditing Tool
On January 29, 2024, the European Data Protection Board (EDPB) unveiled its latest initiative—a Website Auditing Tool designed to assess website compliance with the law. Developed within the framework of the EDPB Support Pool of Experts (SPE), this tool caters to legal and technical auditors at Data Protection Authorities (DPAs), as well as controllers and processors seeking to evaluate their websites.