News & Analysis

A discussion of steps employers can take in advance of the CRPA compliance deadline, including building a CPRA compliance team, data retention, vendor management and watching for other state law developments.

A discussion of new vendor contracting issues related to the CPRA, such as both requirements and recommendations for provisions to be included in the necessary addenda to vendor or service agreements.

A podcast episode explaining the CPRA’s regulatory framework and providing insights regarding enforcement risk.

The “Purge Rule,” retention schedules, and data breach risk. Kwabena Appenteng explains what could be the most burdensome compliance requirements for employers.

The California Privacy Rights Act, which goes into effect on January 1, 2023, grants six new rights to California residents in their roles as employees, applicants, independent contractors, and other human resources members.

A discussion of the extensive list of rights the CPRA confers on employees, independent contractors, and job applicants who reside in California.

The California Privacy Rights Act expands employers’ obligations with respect to the privacy of human resources data more dramatically than any other legislation in U.S. history.

This podcast episode covers the big change for employers with respect to information security under the CPRA – the new, affirmative obligation on employers to implement reasonable security policies and practices.

A discussion of the origin and scope of the CPRA as well as the notice at collection and online privacy policy requirements.

With the enactment of the Colorado Privacy Act, Colorado now joins Virginia in transforming the first major state privacy law, the California Consumer Privacy Act, from an outlier into what now appears to be the beginning of an inevitable trend.