On February 3, 2020, Bernadette Barnes, a private resident of California (on behalf of herself and others similarly situated), brought the first data breach suit citing CCPA ever. The suit named Hanna Andersson (company specializing in high end children’s apparel) and Salesforce.com (cloud technology service as a software (“SaaS”) company) as defendants, and brought claims
One notable difference between the California Consumer Privacy Act (CCPA) and Europe’s General Data Privacy Regulation (GDPR) is that only the latter provides the right for individuals to not be subjected to automated decision-making, including profiling, which has legal or other significant effects on that individual.
But, the CCPA still creates issues for covered entities…
The California Consumer Privacy Act (CCPA) went into effect on January 1, 2020. The CCPA is front page news, and rightfully so. While the major focus has been, and continues to be, on the CCPA, another piece of legislation went into effect on January 1, 2020, which deserves attention.