Alert: California Consumer Privacy Act Changes Impact Employers & Companies

News and Resources

Alert: California Consumer Privacy Act Changes Impact Employers & Companies

Posted on November 17, 2020 by sessionslegal-test | Categories: Employment

More privacy news from the Golden State. On November 3, 2020, California voters passed a ballot measure that will expand the California Consumer Privacy Act (CCPA). This amendment, also known as the California Privacy Rights Act of 2020 (CPRA), will substantially expand the current privacy obligations the CCPA imposes on employers and businesses that collect Californians' personal information.

What did the CPRA Change? Currently, the CCPA requires covered employers to distribute a Notice at Collection regarding personal data obtained about applicants, employees, and independent contractors. Under the CPRA, however, covered employers must also comply with privacy policy requirements, individual rights obligations for consumers, and vendor management requirements.

The CPRA also changes the definition of covered employers and businesses, data retention procedures, requirements for CPRA-compliant contracts with vendors, and expands data breach liability and data rights granted to California residents, including a consumer's right to request covered employers and businesses to correct inaccurate personal information.

What should covered employers and businesses do now? First, make sure you're in full compliance with the current CCPA Notice requirements, which are already in effect. Next, covered employers and businesses needs to start preparing for the increased future CPRA requirements, which take effect in January 2023. The CPRA contains a 12-month lookback period for California residents' requests to exercise their new rights, and CCPA penalties are steep (up to $750 per violation). We expect these increased future requirements to be burdensome and want to ensure as much lead time as possible so that employers are not caught in a "catch up" mode when penalties for non-compliance are in effect.

This means employers should begin updating notifications, creating privacy policies, and organizing human resources data in a manner that will allow you to respond to consumers' and employees' requests to correct, delete, and obtain details on the handling of, their personal information once the CPRA goes into effect.

Have questions about your data privacy notices and other current and future requirements in California? Don't worry-we are here to help!

► Back to News & Resources

FOUNDED IN NEW ORLEANS, WE NOW SERVICE CLIENTS THROUGHOUT THE NATION

California

► San Diego

1550 Hotel Circle North
Suite 260
San Diego, California 92108

T: (619) 758-1891
F: (877) 334-0661
► View Details
Florida

► Tampa

3350 Buschwood Park Dr.
Suite 195
Tampa, Florida 33618

T: (813) 890-2460
F: (877) 334-0661
► View Details
Georgia

► Atlanta

56 Perimeter Center East
Suite 150 PMB 1070
Atlanta, Georgia 30346

T: (678) 539-6030
F: (877) 334-0661
► View Details
Illinois

► Chicago

205 N. Michigan Ave.
Suite 810
Chicago, Illinois 60601

T: (312) 578-0990
F: (877) 334-0661
► View Details
Louisiana

► Metairie

3838 N. Causeway Boulevard
Suite 2800
Metairie, Louisiana 70002

T: (504) 828-3700
F: (504) 828-3737
► View Details
Michigan

► Brownstown Township

22845 Sylvan Ave.
Brownstown Twp, Michigan 48134

T: (313) 351-2165
F: (877) 334-0661
► View Details
New Jersey

► Flemington

3 Cross Creek Drive
Flemington, New Jersey 08822

T: (908) 237-1660
F: (877) 334-0661
► View Details
New York

► New York

180 Riverside Blvd
#302
New York, New York 10069

T: (716) 636-5178
F: (877) 334-0661
► View Details
Pennsylvania

► Philadelphia

5 Canton Circle
Newtown, Pennsylvania 18940

T: (215) 398-1653
F: (877) 334-0661
► View Details
Texas

► Dallas

900 Jackson Street
Suite 440
Dallas, Texas 75202

T: (214) 741-3001
F: (214) 741-3098
► View Details