Alert

CCPA Compliance Reminder: Annual Privacy Policy Update

June 15, 2021

Companies subject to the California Consumer Privacy Act (CCPA) are required to update their online privacy policies “at least once every 12 months,” as detailed in the statute. For many companies that updated their CCPA policies in advance of the law’s enforcement deadline last year (July 1, 2020), that 12-month mark may be approaching. 

The annual privacy policy update is a good opportunity to confirm that the information in your business’s privacy policy is up-to-date and reflects the company’s most current practices. It is also an opportunity to take a fresh look at your company’s overall compliance plan, especially given that amendments to the underlying statute and ongoing revisions to the implementing regulations have made compliance with the CCPA a moving target

Looking ahead, privacy obligations are evolving for businesses that operate in California, Virginia and Colorado. In November 2020, voters approved the California Privacy Rights Act of 2020 (CPRA), which significantly amends the CCPA. Even though that law will not become generally operative until January 1, 2023, work to implement the CPRA is already underway, with the new privacy agency established by the law—the California Privacy Protection Agency (CPPA)—holding its inaugural public Board meeting on Monday, June 14. Additionally, other states are enacting their own comprehensive privacy legislation. In March 2021, Virginia enacted an omnibus privacy law—the Consumer Data Protection Act (CDPA); and this month, the Colorado legislature passed an omnibus privacy bill—the Colorado Privacy Act—that is currently awaiting the Governor’s approval. Those laws will become effective in January and July 2023, respectively, so companies will need to consider these new and nuanced frameworks as they continue to develop their privacy compliance programs.  

If your business needs assistance with its annual CCPA privacy policy update, or more generally in developing compliance strategies and programs in light of the rapidly evolving and expanding privacy landscape, do not hesitate to reach out to a member of our team. 

Read Time: 2 min
Jump to top of page

By using this site, you agree to our updated Privacy PolicyTerms & Conditions, and Cookies Policy.