California Legislature Passes CCPA Amendments and Privacy Bills

By Lindsey Tonsager, Libbie Canter and Sarah Guerrero on September 16, 2019 Posted in California Consumer Privacy Act (CCPA), State Legislatures

Last week, after months of negotiation and speculation, the California legislature passed bills amending the California Consumer Privacy Act (“CCPA”). This marked the last round of CCPA amendments before the legislature adjourned for the year—and before the CCPA takes effect on January 1, 2020. California Governor Gavin Newsom has until October 13 to sign the … Continue Reading

New Research Exposes Perils of Bogus Access Requests Under GDPR, With Implications for CCPA

By David Bender and Lindsey Tonsager on August 12, 2019 Posted in California Consumer Privacy Act (CCPA), European Union, State Legislatures, United Kingdom

At the Black Hat conference in Las Vegas last week, a security researcher presented his research on using access rights available under the GDPR for identity theft purposes (slides available here; whitepaper available here). Specifically, the researcher “attempted to steal as much information as possible” about his fiancé by submitting GDPR access requests in her … Continue Reading

Nevada’s New Consumer Privacy Law Departs Significantly From The California CCPA

By Alexandra Scott and Lindsey Tonsager on June 10, 2019 Posted in California Consumer Privacy Act (CCPA), State Legislatures, United States

On May 29, 2019, the Governor of Nevada signed into law Senate Bill 220 (“SB 220”), an act relating to Internet privacy and amending Nevada’s existing law requiring websites and online services to post a privacy notice. In short, Nevada’s law will require operators of Internet websites and online services to follow a consumer’s direction … Continue Reading