[This is the third in a series of blog posts on how businesses should prepare for the California Privacy Rights Act which will enter into force on January 1, 2023]
When the California Privacy Rights Act (“CPRA”) takes effect on January 1, 2023, it will bring changes to several key areas of privacy law. AALRR has already covered changes regarding (a) employee data here; and (b) data retention requirements here.
[This is the second in a series of blog posts on how businesses should prepare for the California Privacy Rights Act which will enter into force on January 1, 2023]
When the California Privacy Rights Act (“CPRA”) takes effect on January 1, 2023 it will bring sweeping changes to data retention requirements in California.[1] Historically, many companies have over-retained data (and understandably so, since most risks under older laws related to a failure to keep data). The CPRA changes the data-retention landscape significantly by requiring companies to justify and disclose their retention policies, and to limit retention periods to only the time necessary to fulfill the company’s disclosed purpose for retaining.
[1] Final regulations under the CPRA are still pending and the information provided herein is subject to modification. This guidance also does not cover data retention principles under statutes other than CPRA.
RSS Feed
Follow us on Facebook
Follow us on Twitter
Follow us on LinkedInOther AALRR Blogs
Recent Posts
- Preparing For The CPRA Part 3: New Contractual Requirements For Data Transfers
- Preparing For The CPRA Part 2: Changes To Data Retention Requirements
- Preparing For The CPRA Part 1: Changes To Requirements For Employee Data
- How China’s Influx of Young Graduates May Affect Your Business Contracts
- Warning To Warehouse Operators: What To Do With Abandoned Product & Recuperating Your Losses
- California Court of Appeal Rules That The Americans With Disabilities Act Does Not Apply To A Website That Does Not Provide Goods Or Services Connected With A Physical Location
- China’s Personal Information Protection Law Does Not Excuse China-Related Party From Discovery Obligations in the United States, Northern District Says
- Reliance on Third-Party Agents Can Expose You to Substantial Liability
- California Labor Codes’ Policy Against Forum Selection Clauses Overrides Compulsory Cross-Complaint Laws
- Privacy and Data Security National Update: Increasing Federal Involvement in Data Security and Enforcement
Popular Categories
- (22)
- (15)
- (18)
- (1)
- (1)
- (5)
- (1)
- (4)
- (5)
- (4)
- (2)
- (2)
- (1)
- (3)
- (3)
- (1)
- (2)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
- (1)
Contributors
- Cindy Strom Arellano
- Eduardo A. Carvajal
- Michele L. Collender
- Scott K. Dauscher
- Lauren D. Fierro
- Christopher M. Francis
- Runmin (Ivy) Gao
- Evan J. Gautier
- Daniel C. Gavilanes
- Carol A. Gefis
- Amber S. Healy
- Edward C. Ho
- John E. James
- Jonathan Judge
- David Kang
- Neil M. Katsuyama
- Joseph K. Lee
- Damian J. Martinez
- Shawn M. Ogle
- David B. Sarfati
- Jon M. Setoguchi
- Adam P. Snyder
- Brian M. Wheeler