Legacy of CCPA: A blueprint for prioritizing compliance
By 
Kyle Brasseur2023-03-02T14:00:00
Three years in, the promise of the California Consumer Privacy Act (CCPA) remains unfulfilled.
The law expected to rein in the questionable data protection practices of Silicon Valley tech giants has resulted in a fine against a company just once, when cosmetics retailer Sephora was penalized $1.2 million in August for failing to comply with customer data sale notification and opt-out request requirements. Not quite the bite people were expecting.
And yet, the expanding U.S. data privacy legislation landscape is better for this approach. When four additional states—Colorado, Connecticut, Utah, and Virginia—begin enforcing their respective privacy laws this year, they have a blueprint to follow for what these kind of bills should prioritize: compliance.
THIS IS MEMBERS-ONLY CONTENT
You are not logged in and do not have access to members-only content.
If you are already a registered user or a member, SIGN IN now.
Related articles
-
News BriefDoorDash fined $375K in second public CCPA enforcement
Food delivery company DoorDash agreed to pay a $375,000 fine as part of a settlement announced by California Attorney General Rob Bonta addressing alleged violations of the California Consumer Privacy Act.
-
News BriefCCPA first state privacy law deemed adequate by Dubai financial hub
The Dubai International Financial Centre announced the California Consumer Privacy Act passes muster, allowing compliant California businesses to be the first permitted to transfer data with the DIFC without additional contractual measures.
-
News BriefCourt delays enforcement of CCPA changes to March 2024
Changes to the California Consumer Privacy Act expected to take effect July 1 have been stayed until March 2024 following a ruling from the Sacramento County Superior Court.
More from Opinion
-
OpinionWhy are CFOs struggling to stay compliant?
CFOs are tasked with overseeing an organization’s entire financial processes, not least ensuring that financial operations remain compliant with the multitude of global regulations. It’s a heavy burden to carry that might be alleviated slightly with the help of artificial intelligence, writes Markus Hornburg, head of compliance at Basware.
-
OpinionFive reasons why I’m excited about CW’s Cyber Risk & Data Privacy Summit
Having worked for Compliance Week for three years, I’ve found it remarkable how compliance professionals can be so consistently upbeat about their plight. An often refrain in compliance circles is “be comfortable with being uncomfortable.” As difficult as the job can be, that clearly doesn’t mean it can’t be fun.
-
OpinionEricsson's 'integrity journey' post-FCPA settlement top compliance triumph of 2024
It’s been a long “integrity journey” for Ericsson, according to the company’s Head of Compliance Global Affairs Alison Howell. Since settling with the DOJ over FCPA violations in 2019, the company has gone through a "business critical transformation," resulting in the end of its compliance monitorship.