Month: August 2022

First CCPA Enforcement Action Sheds Light on Definition of “Sale of Data”

PBA Cybersecurity and Data Privacy Cybersecurity, Data Breach August 29, 2022

California Attorney General Rob Bonta announced the state’s first California Consumer Protection Act (CCPA) enforcement action this week. The Office of the Attorney General (OAG) released their proposed final judgment and permanent injunction against Sephora, stating that Sephora not only violated the CCPA’s “Do Not Sell” provisions and ignored Global Privacy Control (GPC) signals, but
Read More »

FTC Publishes ANPR for Public Comment on Commercial Surveillance and Harmful Data Security Practices

PBA Cybersecurity and Data Privacy Cybersecurity, Data Breach August 29, 2022

On August 22nd, the Federal Trade Commission (FTC) filed an Advanced Notice of Proposed Rulemaking (ANPR) to the Federal Register, starting the 60-day public comment period. The ANPR was published to “request public comment on the prevalence of commercial surveillance and data security practices that harm consumers.” Spanning 95 questions, the enumerated list of topics
Read More »