California has made notable modifications to two key privacy laws, AB 947 and AB 1194. Governor Gavin Newsom signed both bills into law on October 8 according to a recent update released by Orrick, Herrington & Sutcliffe LLP.
The first bill, AB 947, amends the California Consumer Privacy Act of 2018 (CCPA). This amendment redefines the term “sensitive personal information” to encompass any personal information that discloses a consumer’s citizenship or immigration status.
We are observing a significant overhaul in the interpretation and handling of sensitive data under the CCPA. The new definition, by including citizenship or immigration status, broadens the scope of data categories that must observe stricter handling and protection standards under the Act. It indicates a shift towards more comprehensive privacy protections in the state. As legal professionals, it is essential to stay updated on these evolving definitions and understand the implications for client advisement and company policy creation.
The second bill, AB 1194, modifies the California Privacy Rights Act (CPRA) of 2020. Details about the adjustments to the CPRA are less clear in current documentation, indicating a need for further analysis as specifics emerge.
These changes underline the importance of compliance with data privacy legislation. With the expansion of the term ‘sensitive personal information’ under the AB 947, navigating compliance needs has become more complex, illustrating the necessity of effective and up-to-date privacy policies. Undoubtedly, the analysis and adaptation to these new amendments will be a major agenda point for corporations and law firms alike in the coming months.
It is crucial in this day and age of frequent legislative modifications that legal departments stay informed about these changes. By doing so, they ensure they can provide appropriate advice to their clients or organizations, manage legal risk, and ensure compliance.