March 27, 2023

Volume XIII, Number 86
Advertisement

17

New Articles
Bottom Row Image
Advertisement

March 27, 2023

Subscribe to Latest Legal News and Analysis

March 24, 2023

Subscribe to Latest Legal News and Analysis

Article By

Gretchen A. Ramos

Greenberg Traurig, LLP
Alerts

Related Practices & Jurisdictions
Advertisement

California AG Announces Investigation of Mobile Apps’ CCPA Compliance

Monday, January 30, 2023

On Jan. 27, 2023, the California Attorney General announced his office is investigating and sending letters to businesses in the retail, travel, and food industries with popular mobile apps that allegedly are not in compliance with the California Consumer Privacy Act (CCPA) by failing to offer a consumer opt-out mechanism for sales, or honor rights requests submitted via authorized agents. In its announcement, the California AG also “urge[d] the tech industry to innovate for good – including developing and adopting user-enabled global privacy controls for mobile operating systems that allow consumers to stop apps from selling their data.” The AG’s investigations seem to be becoming an annual tradition in honor of Data Privacy Day. In 2022, the California Attorney General announced an investigation of numerous major corporations in the retail, home improvement, travel, and food services industries operating loyalty programs. While the 2022 notice stated that noncompliant industries would have 30 days to cure and come into compliance, such cure language was not included in the 2023 notice.

The CCPA, as amended by the California Privacy Rights Act of 2020 (CPRA), went into effect Jan. 1, 2023, and enforcement of the amended CPPA will commence July 1, 2023. On Jan. 20, 2023, the AG’s office updated its CCPA website page to include several new FAQs addressing the CPRA amendments. In relation to several issues, the FAQs note the California Privacy Protection Agency (CPPA) is currently engaged in a formal rulemaking process and has proposed CCPA regulations, but the regulations are not final. Once the CCPA regulations are finalized, the FAQs will likely be updated again. While it remains uncertain when the proposed CCPA regulations will be finalized, the CPPA is scheduled to discuss possible action on the proposed regulations, including possible adoption or modification of the text, as well as preliminary rulemaking activities of new rules on risk assessments, cybersecurity audits, and automated decision making during their next meeting on Feb. 3, 2023.

©2023 Greenberg Traurig, LLP. All rights reserved. National Law Review, Volume XIII, Number 30
Advertisement
Advertisement
Advertisement

About this Author

Gretchen A. Ramos, Lawyer, Greenberg Traurig, Data, Privacy & Cybersecurity,The Cloud,Artificial Intelligence, Big Data
Gretchen A. Ramos
Shareholder

Gretchen A. Ramos is Co-Chair of the Data, Privacy & Cybersecurity Practice and focuses her practice on privacy, cybersecurity, and information management. A creative problem-solver with a long track record of success in commercial disputes, she never loses sight of the simple fact that she works in a service industry. Clients appreciate not only her legal skills, but also her direct, no-nonsense approach to client service, including her bullet-pointed emails, snapshot executive summaries, and creativity in finding ways to streamline communications for in-house counsel with dozens of...

[email protected]
415.655.1319
www.gtlaw.com