Sign Up for Alerts
Sign up to receive receive industry-specific emails from our legal team.
Sign Up for Alerts
We provide tailored, industry-specific legal updates to our clients and other friends of the firm.
Areas of Interest
June 1st, 2022
Calif. Privacy Agency Unveils Long-Awaited Draft Regulations
Privacy & Data Security Group Chair Daniel M. Goldberg and Privacy & Data Security Associate Maria Nava’s recent blog post on the California Privacy Protection Agency’s (CPPA) proposed regulations to the California Consumer Privacy Act is cited in the article, “Calif. Privacy Agency Unveils Long-Awaited Draft Regulations” published by Law360.
"As expected, the Regs clarify that businesses must recognize Do Not Sell or Share (DNS) opt-out preference signals," Daniel and Maria Nava wrote. "While some privacy professionals have argued that businesses have a choice between posting a DNS link or honoring an opt-out preference signal, the Regs expressly state that interpretation is incorrect."
“However, the new proposal fails to clarify what exactly constitutes a valid opt-out signal, declining to recognize the Global Privacy Control or other technical specifications that have been developed to allow consumers to exercise their opt-out rights across the internet” and "As written, businesses arguably must respond to any signal, which will create compliance hurdles," said Daniel and Maria, adding that the regulations also don't prohibit opt-out signals from being set to "on" by default by a browser, like the new consumer privacy law that was recently enacted in Connecticut does.
Daniel and Maria note, “Under the CPRA regulations, companies that receive an opt-out request also need to notify any downstream third parties to stop selling or sharing the information as well” and "This appears to be a higher burden than currently required under CCPA or the CPRA text, and reemphasizes the need for a signal that can be read by downstream parties."
Lastly, Contracts with third parties "must also expressly require the third-party to check for opt-out signals," they added. If implemented, this and other proposed requirements, including that these agreements "expressly identify" the specific service for which the third party is processing information, would result in contracts with third parties needing to be much more robust, Daniel and Maria said.
Read full article here. (Behind paywall)
Other Quoted
New California Law Requires Sellers To Warn That Digital ‘Purchases’ Might Vanish
MediaPost quotes Jeffrey A. Greenbaum on California Governor Gavin Newsom's newly signed bill that will prohibit sellers from advertising digital material with the words “buy” or “purchase,” unless the sellers also disclose that they can revoke access at any time. View Article
September 27 2024
More and More Artists Want Trump to Stop Using Their Music. They Face a Costly Fight
NPR quotes Jacqueline Charlesworth on the music lawsuits against Donald Trump, following White Stripes' becoming the latest band to sue Trump for unauthorized use of copyrighted material in his campaign to become president. She notes the sheer volume of complaints against Trump for his music selections may be a record. Ms. Charlesworth also distinguishes claims of transformative use from just using music to promote a campaign. View Article
September 17 2024
SEC Is Coming After OpenSea—These Are the NFTs That Could Be in Trouble
Decrypt quotes Jeremy S. Goldman on how far-reaching the SEC's push into the NFT market might become following the SEC's anticipated lawsuit against NFT marketplace, OpenSeas. View Article
September 9 2024
