Skip to Main Content

Legal Alert

Home > Resources > Legal Alerts > Required Actions for Privacy Rights Laws Now in Effect

RELATED PRACTICE AREAS

Required Actions for Privacy Rights Laws Now in Effect

January 12, 2023

With the start of the new year, the U.S. privacy law landscape is now more complex than ever, as the California Privacy Rights Act (CPRA) and the Virginia Consumer Data Protection Act (CDPA)—which impact businesses beyond those state borders—have now taken effect.

The CPRA brings a number of amendments to the California Consumer Privacy Act (CCPA) and sets the California Privacy Protection Agency as the agency in charge of enforcement. Virginia's CDPA is similar in some respects, but is generally considered simpler to comply with than the CPRA.

CPRA vs. CDPA
Notable among the provisions that are different from the CPRA, the CDPA provides a broader affirmative consent or opt-in requirement for consumers, a broader opt-out right, an obligation to confirm data processing, broader data deletion requirements, a conspicuous disclosure of a mandatory right to appeal the denial of consumer rights, different data minimization standards, and other measures. On the data security front, while the CPRA does not yet require it (but is expected to beginning July 1, 2023), the CDPA requires mandatory data protection. Compliance will likely be checked against the requirements set in the Cybersecurity Framework set by the National Institute of Science and Technology (NIST).

Overall, these laws make it clear that compliance with privacy requirements can be complex and tricky to accomplish. This is frequently the case because, for example, these laws apply to businesses that do not have a physical location in either of these states and the nuanced differences can be missed.

One way to start on the road to compliance is conduct an inventory of your organization’s policies and procedures and update them. For most organizations, this effort will focus on, for example, the privacy policy, the various supply chain management forms, the IT policy, and the information security policy.

We Can Help

Maslon can help guide your process to determine the steps your company should take to avoid any regulatory action.

Related Attorney

Eran Kahana + Learn More Eran Kahana

Maslon LLP uses cookies on this website to enhance your digital experience.
Please see our Privacy Policy. By visiting our website without disabling or blocking cookies, you agree to our use of cookies.

DISCLAIMER

Thank you for your interest in contacting us by email.

Please do not submit any confidential information to Maslon via email on this website. By communicating with us we are not establishing an attorney-client relationship, and information you submit will not be protected by the attorney-client privilege and cannot be treated as confidential. A client relationship will not be formed until we have entered into a formal agreement. You should also be aware that we may currently represent parties whose interests may be adverse to yours, and we reserve the right to continue to represent them notwithstanding any communication we receive from you.

If you would like to discuss possible representation, please call one of our attorneys directly or use our general line (p 612.672.8200). We can then fully discuss our intake procedures and, if appropriate, introduce you to an attorney suited to assist with your matter. Alternatively, you may send us an email containing a general inquiry subject to these terms.

If you accept the terms of this notice and would like to send an email, click on the "Accept" button below. Otherwise, please click "Decline."

Accept Decline

MEDIA INQUIRIES

We welcome the opportunity to assist you with your media inquiry. To ensure we do so properly and promptly, please feel free to contact our representative below directly by phone or via the email option provided. We look forward to hearing from you.

Emily Gurnon, Marketing Communications Manager | Office: 612.672.8251 | Mobile: 651.785.3616

EMAIL DISCLAIMER

This email is intended for use by members of the media only.

Please do not submit any confidential information to Maslon via email on this website. By communicating with us we are not establishing an attorney-client relationship, and information you submit will not be protected by the attorney-client privilege and cannot be treated as confidential. A client relationship will not be formed until we have entered into a formal agreement. You should also be aware that we may currently represent parties whose interests may be adverse to yours, and we reserve the right to continue to represent them notwithstanding any communication we receive from you.

If you would like to discuss possible representation, please call one of our attorneys directly or use our general line (p 612.672.8200). We can then fully discuss our intake procedures and, if appropriate, introduce you to an attorney suited to assist with your matter. Alternatively, you may send an email containing a general inquiry subject to these terms.

If you are a member of the media, accept the terms of this notice, and would like to send an email, click on the "Accept" button below. Otherwise, please click "Decline."

Accept Decline