Updated 6/9/21 @ 11am: The Colorado Senate unanimously voted 34-0 on concurrence and final passage of SB190. It now heads to Gov. Polis, who will have 10 days to sign or explicitly veto it.CPA applies to businesses collecting data on more than 100,000 individuals, or those earning revenue from the data of more than 25,000 consumers. It includes standard data subject rights, an opt-out consent model with a universal opt-out mechanism, and a right to cure, all subject to normal AG rule-making and enforcement.
CPA is effective July 1, 2023 unless vetoed by the Gov. The biggest difference when compared to Virginia or CPRA is the broad requirement (with fewer exemptions) for data protection privacy assessments.
A more specific compliance issue Colorado presents, according to attorney David Zetoony, is the required data protection assessment. Such examinations are also required in the Virginia Consumer Data Protection Act, but Colorado does not exempt companies from these assessments like Virginia.
The Colorado Privacy Act SB190 has passed the Colorado House of Representatives by a vote of 57-7. While the bill must return to the Senate for final reconciliation of amendments made by the House, it’s most likely. Unless the Governor vetos it, which is improbable, the amendments will be reconciled in the next few days.
It looks like 2021 is going to be a big year for consumer privacy awareness. Apple recently announced its current release iOS 14.3 will introduce a new privacy information section along with a developer-reported summary of its app’s privacy practices. However, in a later release this information will appear as a Privacy “Nutrition Label” for app purchases within the App Store. The new release is a significant adjustment for developers and consumers, as it adds more transparency and awareness for app users.
On December 10, 2020, California's Attorney General Xavier Becerra proposed a new set of modifications to the CCPA regulations. The CCPA continues to evolve as these recent changes come less than two months after the last set of proposed changes.
Dan Clarke, President - IntraEdge
The California Consumer Privacy Act (CCPA) proposed updates continue to roll in as the third set of proposed modifications released by the California Department of Justice were submitted for comment through October 28, 2020. According to Michael Hellbusch of Rutan & Tucker, the latest modifications are a big deal for a lot of businesses and their websites. However, the biggest news is that the AG proposed these modifications at all especially being so close to the November 2020 election.
Governor Gavin Newsom signed Assembly Bill 1281 on Tuesday, September 29, 2020. The bill extends the business-to-business and employee partial moratoria, also known as employee privacy rights, until the end of 2022.
Data breaches and technology are evolving at such a rapid rate. In the first half of 2020 alone, data breaches significantly increased by 273% compared to 2019, making privacy laws and regulations such as the CCPA paramount in protecting consumer rights. California is leading the way for privacy compliance, as the fifth-largest global economy, the CCPA forces many companies to address privacy compliance.
Privacy laws and regulations have transformed the relationship between businesses and the personal data they collect from consumers. The CCPA grants privacy rights to California’s consumers, which gives them the right to request access, delete, and modify their data. Granting these rights to individuals can place a significant burden on businesses because they must know exactly what data they hold, where, and in what context, which can be an extremely complex process to unfold.
QuikSense, powered by Truyo, is certified to comply with the FDA’s IEC 80601-2-59-2017 specification, making this a cost-effective and reliable wellness and temperature check option for businesses to leverage in any phase of their COVID-19 strategy. This standalone, contactless temperature sensor can read temperatures quickly and directly from an individual’s wrist with the highest level of temperature accuracy on the market.
On August 31, 2020, the California Legislature passed Assembly Bill 1281, extending the business-to-business and employee partial moratoria also referred to as employee privacy rights, until the end of 2021. Earlier this year, in a study conducted among privacy professionals by Dimension Data on behalf of Truyo, 49% of businesses were already addressing employee privacy rights in the workplace.
Privacy rights regulation is expanding beyond the GDPR and CCPA with Brazil’s privacy law referred to as the LGPD (Lei Geral de Proteção de Dados Pessoais) now effective as of September 18, 2020. While penalties for infractions will be applied on August 1, 2021.