Colorado has become the third state to enact a comprehensive consumer data privacy statute. Passed by the Colorado General Assembly on June 8, 2021, and signed into law by Colorado Governor Jared Polis on July 7, 2021, the Colorado Privacy Act (“CPA”) is slated to come into effect on July 1, 2023. This Legal Update

Virginia has become the second state to enact a comprehensive consumer data privacy statute in the United States. Signed into law by Virginia Governor Ralph Northam on March 2, 2021, the Consumer Data Protection Act (“CDPA”) will take effect on January 1, 2023. While the CDPA shares some key components with the California Consumer Privacy

Use of IoT1 devices continues to grow exponentially as companies leverage the impressive data collection abilities of technology to drive exciting developments.2 It’s estimated that by 2025, there will be over 64 billion IoT devices in use worldwide.3 Expansion is further fueled by the remote working environment arising out of the COVID-19

On November 3, 2020, a majority of Californians cast “yes” votes for Proposition 24, the ballot initiative enacting the California Privacy Rights Act of 2020 (CPRA). Although the election results have not yet been certified by the California Secretary of State and may not be before December 11, 2020 (the latest date), the CPRA had

The long-awaited enforcement date of July 1, 2020, for the California Consumer Privacy Act (“CCPA”) has finally arrived. The Office of the California Attorney General began enforcing the CCPA that very day, even before its implementing regulations (the “Regulations”) were finalized or approved. The Regulations finally became effective on August 14, 2020, but not before

California Attorney General Xavier Becerra recently released proposed regulations for the California Consumer Privacy Act of 2018 (“CCPA”), which expand upon and provide further details on the rights and obligations created by the CCPA. The CCPA requires the attorney general to adopt regulations to further the CCPA’s purposes and provide guidance to businesses on how

Almost immediately after the passage of the California Consumer Privacy Act (“CCPA”), lawmakers proposed both large and small amendments to it. On September 13, 2019, California’s legislative session came to a close and with it the last chance for the California legislature to pass amendments to the CCPA before it comes into effect on January

While most companies are squarely focused on the California Consumer Privacy Act (CCPA), 2019 has seen other major developments on data privacy and security. Several states have reacted to the CCPA by passing or pursuing their own security and privacy legislation, and others will likely follow. Namely, Nevada, New York, Maine and North Dakota have

Consistent with global developments, the landscape of privacy and cybersecurity laws in the United States has been rapidly changing. Data privacy and cybersecurity are regulated at both the federal and state level in the United States, and it is at the state level that many of the major legislative developments have occurred in recent years.