California Privacy & the CCPA

Overview

California has led the way in the regulation of data privacy and cybersecurity for many years. We have been actively advising clients on California privacy and cyber issues from the enactment of the nation’s first data breach notification statute in 2002 (California Civil Code § 1798.82) through the landmark California Consumer Privacy Act of 2018 (CCPA) and the California Privacy Rights Act of 2020 (CPRA). Our experienced professionals collectively have decades of experience assisting market leaders across industries with all aspects of California privacy matters and harmonizing California’s requirements into their existing enterprise compliance program. 

We work with senior-level privacy and legal roles in major organizations to help lead enterprise-wide compliance initiatives. We advise on all aspects of keeping their operations, products, and services compliant with the CCPA and other California privacy laws. We know the emerging technologies, digital activities, and Big Data issues driving legislation and enforcement. And we have extensive experience representing companies before courts and regulators in California, including extensive experience with state court UCL class actions.

The risks if you fail to comply with the CCPA are significant – statutory penalties, attorney general enforcement, and potential state court class actions. We assist you by identifying practical and creative approaches to ensure compliance while preserving competitive advantage and promoting innovation. 

Experience

• Representing two major insurers and one of the world’s largest banks in connection with compliance with CCPA and California privacy requirements. 
• Advised a global mobile communications provider on advertising technology and helped them formulate a forward-looking privacy program for new product development. 
• Lead outside counsel to the largest private package transportation and logistics concern in the world for CCPA compliance, requiring ongoing analysis of novel privacy and cyber issues.
• Representing a global quick-service restaurant brand in developing its full CCPA compliance strategy and aligning it with existing online, app, and store practices. 
• Implementing automated solutions for CCPA compliance and consumer rights’ requests and facilitating disclosures for loan pre-approvals for a global automotive marketing company.
• Representing one of the world’s foremost luxury automotive manufacturers in formulating its CCPA – and now CPRA – compliance strategy.
• Representing a number of health care providers in defending against claims under the CCPA, including issues of first impression, and common-law claims for invasion of privacy and unjust enrichment. 
• Developed ongoing compliance programs for several global food and beverage corporations, financial institutions, e-commerce companies, retailers, and global online advertising firms. 

We also participated in the California Attorney General’s Office public forum process and submitted comments on behalf of clients as part of the office’s CCPA pre-rulemaking phase.