[This is the third in a series of blog posts on how businesses should prepare for the California Privacy Rights Act which will enter into force on January 1, 2023]
When the California Privacy Rights Act (“CPRA”) takes effect on January 1, 2023, it will bring changes to several key areas of privacy law. AALRR has already covered changes regarding (a) employee data here; and (b) data retention requirements here.
[This is the second in a series of blog posts on how businesses should prepare for the California Privacy Rights Act which will enter into force on January 1, 2023]
When the California Privacy Rights Act (“CPRA”) takes effect on January 1, 2023 it will bring sweeping changes to data retention requirements in California. Historically, many companies have over-retained data (and understandably so, since most risks under older laws related to a failure to keep data). The CPRA changes the data-retention landscape significantly by requiring companies to justify and disclose their retention policies, and to limit retention periods to only the time necessary to fulfill the company’s disclosed purpose for retaining.
 Final regulations under the CPRA are still pending and the information provided herein is subject to modification. This guidance also does not cover data retention principles under statutes other than CPRA.
[This is the first in a series of blog posts on how businesses should prepare for the California Privacy Rights Act which will enter into force on January 1, 2023]
Although since January 1, 2020, the California Consumer Privacy Act (“CCPA”) has required covered businesses (as defined below) to provide notice to California employees and job applicants regarding the types of personal information that a business collects, certain key employee exemptions previously limited the privacy-related requirements for employers and corresponding rights of employees and job applicants. However, those exemptions are set to expire on January 1, 2023.
We have yet to realize the full effect of the COVID-19 pandemic and its impact on the global economy. According to recent reports from China’s National Bureau of Statistics, nearly 20% of Chinese citizens, aged 16 – 24, are unemployed. University graduates are likely to be more affected in China this year than at any point in China’s history with over 10-million Chinese graduates fighting their way into a job market with the worst-prospects ever. The Chinese government’s strict adherence to a zero-tolerance Covid policy has devastated major manufacturing activities throughout the country, leading to an overall decline in China’s sustained economic momentum coming out of the pandemic.
 China’s National Bureau of Statistics – Unemployment Report as of July, 2022.
 Pollard M., 2022, June 23. Analysis: Record numbers of Chinese graduates enter worst job market in decades. Reuters. Retrieved from https://www.reuters.com/world/china/record-numbers-chinese-graduates-enter-worst-job-market-decades-2022-06-23/
 Mayger J., Ma A., Liu Y. Hancock T., 2022, September 14. China Braces for a Slowdown That Could Be Even Worse Than 2020. Bloomberg News. Retrieved from https://www.bloomberg.com/news/articles/2022-09-14/china-economic-growth-forecasts-keep-sinking-as-risks-multiply
With the looming economic downturn, clients, retailers and small businesses are looking to cut costs wherever possible. Lately, these cost cutting measures have had a significant impact on warehouse operators or companies that store goods, who are caught in the middle of these cost cutting attempts.
Since its passage in 1990, the Americans with Disabilities Act (ADA) has required “places of public accommodation” to make modifications to promote accessibility for disabled persons. But what about websites? We previously discussed the practical and legal complications of the ADA and California’s corresponding Unruh Civil Rights Act with an earlier post here. Although they can be accessed by the public, a website is not a physical location, even though it may sell physical goods and services. This question has split Federal Courts of Appeal for years. Some have held that websites only exist in cyberspace and therefore are not “places” governed by the ADA. Others have held that a website does qualify as a “place,” so long as it is advertising goods and services provided at a specific physical facility. The California Court of Appeal had not addressed this issue or its implications for the Unruh Act.
A federal magistrate judge in the Northern District of California recently rejected a Chinese company’s attempt to invoke China’s recent Personal Information Protection Law (“PIPL”) to limit discovery obligations in the United States. In Cadence Design Sys., Inc. v. Syntronic AB, No. 21-cv-03610-SI, United States Chief Magistrate Judge Joseph C. Spero refused to limit the PIPL’s legal obligations exception to Chinese laws and China-recognized orders. On June 24, 2022, the Court denied defendants’ motion for reconsideration of the Court’s earlier order compelling Defendant Syntronic (Beijing) Technology R&D Center Co., Ltd. (“Syntronic Beijing”) to produce computers in the possession and custody of defendants in China, for inspection in the United States. While on its face China’s PIPL would seemingly prohibit production of these China-stored computers into the United States without the consent of current and former individual employees (who have refused to consent), the Court ruled that its order in the case created a legal obligation sufficient to invoke the legal obligation exception under PIPL Article 13.
Paperwork is an inevitable and often tedious part of doing business. When that paperwork becomes routine and time consuming, the natural inclination is to skim documents or rely on industry-developed shortcuts. While this can save you time in the short-term, doing this risks exposing you and your company to massive liability. And while you can directly control your own actions, the risk of liability does not end there. Many companies choose to outsource that paperwork to third-parties and trust them to do their jobs. But even when you have good practices internally, when the third parties that work for you do not follow best practices, you can still be put at risk. The recent California Court of Appeals decision in Bergstrom v. Zions Bancorporation is a clear example of how reliance on third-party agents and a third-party’s use of shortcuts can expose your company to massive liabilities. 2022 WL 1419910 (2022).
More than ever, companies aspire to increase the reach of their businesses by opening secondary or satellite offices in different states. While this can be an effective tool for expansion, it opens the business to potential liability in multiple forums which may have different or contradicting rules and regulations, particularly when addressing the rights of employees. As with many legal complexities associated with cross-border transactions, one of the most common ways to limit this uncertainty is through the use of forum selection clauses—contractual provisions which dictate the applicable law or potential legal forums for disputes arising out of those contracts.
Other AALRR Blogs
- Preparing For The CPRA Part 3: New Contractual Requirements For Data Transfers
- Preparing For The CPRA Part 2: Changes To Data Retention Requirements
- Preparing For The CPRA Part 1: Changes To Requirements For Employee Data
- How China’s Influx of Young Graduates May Affect Your Business Contracts
- Warning To Warehouse Operators: What To Do With Abandoned Product & Recuperating Your Losses
- California Court of Appeal Rules That The Americans With Disabilities Act Does Not Apply To A Website That Does Not Provide Goods Or Services Connected With A Physical Location
- China’s Personal Information Protection Law Does Not Excuse China-Related Party From Discovery Obligations in the United States, Northern District Says
- Reliance on Third-Party Agents Can Expose You to Substantial Liability
- California Labor Codes’ Policy Against Forum Selection Clauses Overrides Compulsory Cross-Complaint Laws
- Privacy and Data Security National Update: Increasing Federal Involvement in Data Security and Enforcement
- Cindy Strom Arellano
- Eduardo A. Carvajal
- Michele L. Collender
- Scott K. Dauscher
- Lauren D. Fierro
- Christopher M. Francis
- Runmin (Ivy) Gao
- Evan J. Gautier
- Daniel C. Gavilanes
- Carol A. Gefis
- Amber S. Healy
- Edward C. Ho
- John E. James
- Jonathan Judge
- David Kang
- Neil M. Katsuyama
- Joseph K. Lee
- Damian J. Martinez
- Shawn M. Ogle
- David B. Sarfati
- Jon M. Setoguchi
- Adam P. Snyder
- Brian M. Wheeler
- December 2019
- November 2019
- October 2019
- September 2019
- August 2019
- June 2019
- May 2019
- April 2019
- March 2019