New State Data Privacy Laws in California and Other States
Corporate Counsel Compliance Guidance
The CPRA is the only one of the five state privacy laws that creates a private right of action, which is limited to certain data security incidents. it contains increased penalties for violations related to a minor’s data. Also, CPRA creates a new enforcement and rulemaking body, the California Privacy Protection Agency.
Speakers
Alan Friel
Partner
Squire Patton Boggs
Myriah V. Jaworski
Member, Data Privacy/Cyber Security Group
Clark Hill
Topics
- What are some of the similarities and differences with the new crop of U.S. state privacy laws and between them and data laws in Europe and other nations?
- What are the benefits of conducting a data protection impact assessment, and when is it required?
- How to practically prioritize company data privacy compliance efforts to minimize risk?
- Attendees will receive summary materials and model workstreams
Outline
- U.S. state privacy laws and recent developments
- New data subject rights and company obligations and limitations
- Data minimization and retention limitations
- Advertising and cookies
- Data disclosures to vendors and others
- Security
- Effective methods of compliance and data handling
- Data inventory and info governance
- Gap assessments and remediation plans
- Processor and third party management
- Workstream and checklist for data privacy risk preparedness