Broadcast Date: Wednesday, August 19, 2020
from 3:00 pm to 5:00 pm (ET)
Broadcast Date: Wednesday, August 19, 2020
The California Consumer Privacy Act (CCPA) significantly reshaped privacy laws, creating a profound impact on California-based companies and consumers. Since its enactment, businesses have been faced with increased challenges and compliance hurdles and its effect will be further felt as revisions to the existing regulations are still possible.
While the release of the final regulations is still uncertain, businesses must be up-to-date and well-versed with the regulatory developments in the CCPA. They must also be proactive in reviewing their company practices and policies to ensure compliance and avoid legal liabilities and sanctions.
The Knowledge Group has assembled a panel of key thought leaders and practitioners to provide the audience with an in-depth discussion of the current and emerging regulatory developments in the CCPA. Speakers, among other things, will present implications and drawbacks and offer best compliance practices in this rapidly evolving legal climate.
This LIVE Webcast will discuss the following key provisions:
- Regulatory Updates on Proposed CCPA Regulations
- New Consumer Privacy Rights
- Demystifying Implications
- Risk Issues and Challenges
- Best Compliance Practices
Print and review course materials
Method of Presentation:
On-demand Webcast (CLE)
NY Category of CLE Credit:
Areas of Professional Practice
How to Claim CLE Credits Per State:
CLE State Requirements:
CPE State Requirements:
Mary Jane Wilson-Bilik, Partner
Eversheds Sutherland (US) LLP
MJ received her doctorate in political science from Columbia University and her J.D., magna cum laude, from the Georgetown University Law Center.
Kenneth K. Dort, Partner
Faegre Drinker Biddle & Reath LLP
Kenneth Dort is a preeminent resource on mission-critical data security issues and is consulted often for immediate counsel on high-stakes data breaches, as well as for guidance and strategy on the privacy and other legal implications of new technologies. Ken is CIPP/US, CIPP/E and CIPP/C certified and is a recognized adviser to clients around the world on data security and privacy practices and compliance needs arising under federal, state, provincial and international laws and industry standards. He also is a powerful litigator in the courtroom, a deft negotiator with regulators and a valued counselor on software development and integration.
Jana Terry, JD, CIPP/US, Partner
Beckstead Terry PLLC
Jana Terry is a privacy and compliance partner with Beckstead Terry PLLC, a boutique business and employment law firm in Austin, Texas. Building on a 20-year background in commercial litigation, Jana now focuses her law practice on data privacy and security laws (including GDPR and CCPA), data breach and incident response planning, workplace ethics and privacy matters, and internal investigations. Jana is a Certified Information Privacy Professional (CIPP/US), a Certified Compliance & Ethics Professional (CCEP-US), and a Certified Fraud Examiner (CFE). Jana is honored to have been selected for the Texas Super Lawyers list every year since 2015. In 2019 & 2020, she was also selected by Austin Monthly as a “Top Austin Attorney” in the Business Law category.
Charumati Ganesh, CIPP/US, Associate
Charu is a data privacy and cybersecurity attorney in the Grand Rapids office of Varnum LLP. Charu holds a CIPP/US certification and represents clients in a number of industries, including autonomous and connected vehicles and the consumer data marketplace. Charu is able to skillfully navigate the intricacies of the rapidly-evolving data privacy and cybersecurity regulatory landscape and help her clients develop policies and procedures that comply with both international and domestic privacy laws.
Charu has represented clients in the insurance, manufacturing and agricultural industries through regulatory enforcement actions and consumer tort litigation. Charu has also counseled global corporations through data breaches and helped them develop response plans that minimize their risk of liability.
SEGMENT 1: Jana Terry, JD, CIPP/US, Partner Beckstead Terry PLLC
CCPA Regulatory Update: As the CCPA regulations are on the verge of becoming final, companies are now better able to determine the specifics of compliance. We will cover the highlights:
- How to comply with notice obligations
- Notice at collection
- Notice of right to opt-out of sale of PI
- Notice of financial incentive
- How to respond to consumer CCPA requests (to opt out, for categories of PI, for specific pieces of PI, and to delete)
- Verification procedures
- Response deadlines
- Options for substantive responses
SEGMENT 2: Mary Jane Wilson-Bilik, Partner Eversheds Sutherland (US) LLP
- Changes to the CCPA are on the horizon: the CPRA initiative. In November 2020, Californians are expected to approve a ballot initiative, the California Privacy Rights Act (CPRA). This initiative will significantly amend the CCPA, adding new consumer rights and requiring businesses to implement these new rights, modify their contracts and amend their privacy policies.
- Highlights of the CPRA: We will discuss several aspects of the CPRA, including
- the new consumer right to correct their personal information
- the concept of “sensitive personal information” and consumers’ right to limits its use and disclosure
- consumers’ right to opt-out of selling and sharing their personal information
- new contract requirements impacting all entities that receive personal information
- new limitations on cross-contextual advertising, automated decision-making (AI) and profiling
- the authority of California’s new privacy agency, the California Privacy Protection Agency (CCPA).
SEGMENT 3: Kenneth K. Dort, Partner Faegre Drinker Biddle & Reath LLP
- “Reasonable security procedures and practices” under the CCPA – what is a reasonable security procedure and practice for purposes of the private right of action for data breaches in the CCPA era as noted in Section 1798.150? We will take a look at the GDPR, NIST, and the CIS for insights on what protocols companies should be considering, as well as what recent litigation may be signaling on this front.
- Data breaches under the CCPA – what triggers has the CCPA imposed to permit private rights of action arising from data breaches? How has the CCPA incorporated the current CA breach notification provisions in Section 1798,81.5 on this front, and what should companies incurring a breach involving CA residents be thinking about to address the exposure created by the CCPA in the data breach context. What should companies be concerned about now? Does the CCPA affect how breach notification efforts towards CA residents should be conducted?
SEGMENT 4: Charumati Ganesh, CIPP/US, Associate Varnum LLP
- Private right of action & increased litigation – Consumers may sue businesses for statutory damages when specified types of personal information are subject to unauthorized access and exfiltration, theft, or disclosure because of a failure to implement and maintain “reasonable” security measures and the business has not cured the alleged violation within the CCPA's pre-suit period. See Cal. Civ. Code § 1798.150.
- Plaintiffs don't need to show actual harm.
- Liability could be enormous; for example, for Equifax, statutory damages of $100 – 750 per customer per incident would have translated to $1.5 to $11.25 billion in liability for its breach, which involved over 15 million California residents.
- Though this only applies to data breaches, consumers have already attempted many times to bring CCPA claims alleging failure to comply (e.g. recent Zoom class actions) and have cited the CCPA in connection with different violations (e.g. California Unfair Competition law)
Date & Time:
Wednesday, August 19, 2020
3:00 pm to 5:00 pm (ET)
Who Should Attend:
- Privacy/Data Protection Officers
- Information Security Directors
- Chief Information Security Officers
- Chief Technology Officers
- Chief Information Officers
- Risk and Compliance Officers
- Marketing Executives
- C-Level Executives
- In-House/General Counsels
Join Over 150,000 Professionals Empowering Their Careers
Learn anywhere from over 1900+ live and recorded CLE, CPE & Technology Webcasts.