The California Attorney General (AG) submitted, on 1st June 2020, the final version of the Regulations for the California Consumer Privacy Act (CCPA). The Regulations, which have been enforceable since 1st July 2020, govern compliance with the CCPA and aim to provide specific guidance regarding its practical implementation. A violation of these Regulations constitutes a violation of the CCPA, and it is subject to the same sanctions and remedies provided in the CCPA – meaning they are very important for organisations to remain aware of.
- A chronological background of the Regulations can be summarised as follows:
- On 10th October 2019, the AG issued proposed regulations under the CCPA.
- On 7th February 2020, the AG released the first set of modifications made to proposed regulations.
- On 11th March 2020, the AG published the second set of modifications to the proposed regulations.
- The final version of the regulations were released on 1st June 2020.
Notably, the CCPA and the Regulations became enforceable on 1st July 2020 as the AG’s office refused to postpone the enforcement deadline in light of the Covid-19 pandemic.
Our Senior Data Protection Consultant Kaveh Cope-Lahoti, and Data Protection and Privacy Analyst Dounia Lahri, have produced a guidance document that aims to clarify the relevant obligations that will impact business operations as well as provide technical and practical steps to address them.
To access this document please click the link below: