140 Days Until The California Consumer Privacy Act Becomes Law - Why Aren't More Businesses Complying?
September 09, 2019 —
Kyle Janecek and Jeff Dennis – Newmeyer DillionCalifornia, for better or for worse, has a reputation as being a trendsetter, and has taken the lead in the United States by passing the "California Consumer Privacy Act," or "CCPA." This massive law has been on the books since 2018, but hasn't taken effect yet. However, the timeframe for businesses to be in compliance is rapidly diminishing. Currently, there are less than five months for businesses to (a) familiarize themselves with what the law requires; (b) determine how and if they are affected by the law; and (c) determine how to be in compliance with the law's demands. Right now, companies aren't making a rush to become CCPA compliant, but this is a mistake. Below are a few of the misconceptions that businesses have, as well as the realities.
MISCONCEPTION 1: It doesn't apply to my company.
For many businesses, it will apply. The baseline of the CCPA is: (1) does the business do anything with California residents (including employees); (2) is it for-profit; and (3) it either has $25 million annual revenue, "sells" 50,000 pieces of personal information or receives 50% or more of its revenue from personal information.
It does not matter if the business is in Nevada, Arizona, Texas or Delaware. So long as there is some connection to Californian residents, exists to make a profit, and otherwise satisfies either the profit, volume, or revenue percentage requirements, it applies. On that note, even if a business does not sell personal information, it does not mean it does not "sell" personal information under the law, as it includes any exchange of personal information for valuable consideration, such as the exchange of consumer data between companies, or the sale of information to a University for study.
MISCONCEPTION 2: The Federal Government will stop it.
One of the main reasons we have the CCPA is because the Federal Government has not acted on this issue. Furthermore, there is a high likelihood that any Federal law will not be substantially different from the CCPA, keeping the core principles in place. It's also unlikely that such a law will take effect and be passed in the remaining five months before the CCPA begins enforcement. Companies must accept that ideals of transparency, choice, consent and reasonable security as they relate to consumers' personal information are here to stay.
MISCONCEPTION 3: California is still changing the law, so I should wait.
California is still in the process of fine-tuning the CCPA, but this is no reason to wait. Fixes to questions arising regarding the CCPA have come out piecemeal, and continued changes, including expansions are likely. For example, employees were previously not addressed specifically within the CCPA, but are being addressed in the planned AB 25, excluding employees from some of the CCPA's protections. Conversely, there have also been planned provisions to expand on the protections and enforcement mechanisms of the CCPA, including a broad and expansive private right of action to permit individuals to sue for technical violations of the statute, like having to wait too long for a response to the demand, even if no actual damage is suffered. Again, the foundational requirements of the CCPA will not change via amendment – so companies should act now.
MISCONCEPTION 4: It's too expensive.
Actually no. Many of the basic actions are not cost-prohibitive, and are actions a business would want to do anyways: (a) Employee training to avoid data breaches and how to respond to user requests; (b) data mapping to quickly find, access, and arrange protections for consumer data; and (c) ensuring you have reasonable cyber security. This can even be turned into a competitive advantage, as consumers increasingly value companies that share their interests, including their privacy.
A compliance mistake could be extraordinarily costly. Currently, a violation for statutory violations of the CCPA can carry a penalty between $2,500 to $7,500 per individual violation. Furthermore, there is a private right of action with statutory damages of $100 to $750 per individual violation that could quickly balloon to exceed $5 million at a minimum, and invites class action/lawsuits for a data breach.
While this is true of almost every legal risk, an ounce of prevention is worth a pound of cure. The penalties on the higher end of the spectrum are for willful violations, and attempts to comply with the law can act to curb potential risks.
What Should I Do?
If you feel CCPA compliance is important to your business, and decide to prepare for the CCPA with us, our firm has created a 90-day CCPA compliance program where our team will collaborate with you to determine a scalable, practical, and reasonable way for you to meet your needs, without breaking the bank. Let us provide you a free initial consultation to see if our CCPA compliance program works for you.
Kyle Janecek is an associate in the firm's Privacy & Data Security practice, and supports the team in advising clients on cyber related matters, including policies and procedures that can protect their day-to-day operations. For more information on how Kyle can help, contact him at kyle.janecek@ndlf.com.
Jeff Dennis is the head of the firm's Privacy & Data Security practice. Jeff works with the firm's clients on cyber-related issues, including contractual and insurance opportunities to lessen their risk. For more information on how Jeff can help, contact him at jeff.dennis@ndlf.com.
About Newmeyer Dillion
For 35 years, Newmeyer Dillion has delivered creative and outstanding legal solutions and trial results that align with the business objectives of clients in diverse industries. With over 70 attorneys working as an integrated team to represent clients in all aspects of business, employment, real estate, privacy & data security and insurance law, Newmeyer Dillion delivers tailored legal services to propel clients' business growth. Headquartered in Newport Beach, California, with offices in Walnut Creek, California and Las Vegas, Nevada, Newmeyer Dillion attorneys are recognized by The Best Lawyers in America©, and Super Lawyers as top tier and some of the best lawyers in California and Nevada, and have been given Martindale-Hubbell Peer Review's AV Preeminent® highest rating. For additional information, call 949.854.7000 or visit www.newmeyerdillion.com.
Read the court decisionRead the full story...Reprinted courtesy of
Hawaii Federal District Court Grants Preliminary Approval of Settlement on Volcano Damage
September 13, 2021 —
Tred R. Eyerly - Insurance Law HawaiiThe federal district court granted preliminary approval of the class action settlement reached on behalf of insureds who suffered property damage due to the 2018 Kilauea eruption on the Big Island. Aquilina v. Certain Underwriters at Lloyd's London, 2021 U.S. Dist. LEXIS 152614 (D. Haw. Aug. 13, 2021).
After destruction of their homes due to lava flow, plaintiffs sued various insurers and agents as a putative class action. Plaintiffs claimed they purchased surplus lines policies brokered and underwritten by various defendants. The policies each contained an exclusion for the peril of lava flow, which plaintiffs claimed rendered them worthless or unsuitable given that their properties were located in a high-risk lava zone.
Plaintiffs alleged that defendants breached obligations under the Hawaii Surplus Lines Act, which required that surplus lines insurers conduct a diligent search for other available coverage before placing a homeowner with surplus lines coverage. Plaintiffs alleged defendants should have advised them of the availability of lava-damage coverage through the Hawaii Property Insurance Association (HPIA), a statutorily created association of admitted insurers established in part in response to Kilauea's eruption patterns, which made the private insurance market less likely to Insure certain high-risk areas.
Read the court decisionRead the full story...Reprinted courtesy of
Tred R. Eyerly, Damon Key Leong Kupchak HastertMr. Eyerly may be contacted at
te@hawaiilawyer.com
ASCE Releases New Report on Benefits and Burdens of Infrastructure Investment in Disadvantaged Communities
February 05, 2024 —
The American Society of Civil EngineersWashington — The
American Society of Civil Engineers today released a new paper, Measuring the Benefits and Burdens of Infrastructure in Disadvantaged Communities. The report looks at how several communities across the country consider equity when investing infrastructure funds, and the impact of those projects on lower-income communities.
"Civil engineers are focused on improving quality of life by building systems that improve the public's health, safety, and well-being," said Marsia Geldert-Murphey, P.E., 2024 President, ASCE. "However, the decisions on how and where infrastructure is built can affect communities for decades after a project is complete. By looking at the benefits and burdens of past projects, infrastructure owners and developers can find better ways to consider the impact of infrastructure projects being designed now."
Some of the recommendations in the paper include encouraging government and other infrastructure stakeholders to use community engagement and transparent metrics when making decisions about proposed infrastructure investments. It also encourages post-project assessments and the use of existing resources to evaluate the positive and unexpected consequences of past infrastructure projects.
Measuring the Benefits and Burdens of Infrastructure in Disadvantaged Communities is
available here.
ABOUT THE AMERICAN SOCIETY OF CIVIL ENGINEERS
Founded in 1852, the American Society of Civil Engineers represents more than 150,000 civil engineers worldwide and is America's oldest national engineering society. ASCE works to raise awareness of the need to maintain and modernize the nation's infrastructure using sustainable and resilient practices, advocates for increasing and optimizing investment in infrastructure, and improve engineering knowledge and competency. For more information, visit www.asce.org or www.infrastructurereportcard.org and follow us on Twitter, @ASCETweets and @ASCEGovRel.
Read the court decisionRead the full story...Reprinted courtesy of
In Oregon Construction Defect Claims, “Contract Is (Still) King”
April 25, 2012 —
CDJ STAFFWriting in Oregon’s Daily Journal of Commerce, David Anderson looks at the aftermath of the case Abraham v. T. Henry Construction, Inc. In that case, Anderson notes that “the homeowners hired a contractor to build their house, and subsequently discovered extensive water damage” “after expiration of the time to sue for breach of contract.” The homeowners claimed negligence. Oregon’s Supreme Court concluded that “homeowners only had to prove that the contractor negligently caused reasonably foreseeable harm to the homeowner’s property.”
�Anderson views this decision as leading to two risks for contractors. “First, contractors can be held liable in tort for breaching building code standards; second, they can be held liable for violating the often-difficult-to-define ‘reasonable care’ standard.” But here, “contract can be king.” The Oregon Supreme Court noted that the contractor “could have avoided exposure to the general ‘reasonable care’ standard by more carefully defining its obligations in the original construction contract.”
�He notes that contractors who fail to define their obligations or use generic definitions “may be exposing themselves to a more vague scope of liability.”
�Read the full story…
� Read the court decisionRead the full story...Reprinted courtesy of
Federal District Court Finds Coverage Barred Because of Lack of Allegations of Damage During the Policy Period and Because of Late Notice
December 29, 2020 —
Robert Dennison - Traub LiebermanIn American Bankers Ins. Co. of Florida v. National Fire Ins. Co. of Hartford, 2020 WL 5630017 (Sept. 21, 2020), the Northern District of California of the United States District Court had occasion to consider whether allegations in an underlying complaint triggered a duty to defend and a late notice defense to coverage.
The underlying actions were a suit against the City of Walnut Creek for damages from flooding allegedly caused by the City’s failure to develop and maintain its storm drains.The City settled the cases then sued its liability insurers who issued its coverage in the period 1968 to 1986 for indemnification of the amounts spent to defend and settle the cases.The published decision involved three Travelers’ policies issued to the City between 1968 and 1976, as to which Travelers sought summary judgment as to the lack of coverage in its policies.
The district court first found that the definition of an “occurrence” in the policies, in one policy “an event or a continuous or repeated exposure to conditions which causes injury to person or damage to property during the policy period” and in the other two “an accident, including injurious exposure to conditions, which results during the period this policy is in effect, in bodily injury or property damage,” fell within the rule of Montrose Chemical Corp. v. Admiral Ins. Co. (1995) 10 Cal.4th 645, that injury or damage during the policy period must occur in order for the policy to be triggered.The court agreed with Travelers that while there were allegations of flooding for many years, the only claims/allegations of property damage were for the period 2000 and later.Therefore the property damage coverage in the policies was never triggered.
Read the court decisionRead the full story...Reprinted courtesy of
Robert Dennison, Traub LiebermanMr. Dennison may be contacted at
rdennison@tlsslaw.com
When an Intentional Act Results in Injury or Damage, it is not an Accident within the Meaning of an Insurance Policy Even When the Insured did not Intend to Cause the Injury or Damage
June 06, 2022 —
Gary L. LaHendro - Haight Brown & Bonesteel LLPIn
Maryam Ghukasian v. Aegis Security Insurance Company (No. B311310, filed April 14, 2022, and certified for publication on May 5, 2022), the Court of Appeal of the State of California, Second Appellate District held that Maryam Ghukasian’s insurer, Aegis Security Insurance Company (“Aegis”), had no duty to defend her in an underlying lawsuit alleging she cleared land and cut trees on her neighbors’ property without their consent. The appellate court explained Ms. Ghukasian’s acts of intentionally cutting the trees and clearing the land were not accidental for purposes of insurance coverage, even if she acted on the good faith but mistaken belief the trees were on her property.
Ms. Ghukasian owns a home in Glendale, California. She purchased a homeowner’s insurance policy from Aegis for the policy period of June 13, 2018 to June 13, 2019 (the “Aegis Policy”). In August 2018, Ms. Ghukasian hired a contractor to clear and cut trees she believed were on her property. However, the trees were on the property of her neighbors, Vrej and George Aintablian.
Read the court decisionRead the full story...Reprinted courtesy of
Gary L. LaHendro, Haight Brown & Bonesteel LLPMr. LaHendro may be contacted at
glahendro@hbblaw.com
Hawaii State Senate Requires CGL Carriers to Submit Premium Information To State Legislature
March 20, 2011 —
CDJ STAFFIn light of the decision in Hawaii’s Intermediate Court of Appeals in Group Builders, Inc.,v. Admiral Insurance Company, 231 P.3d 67(2010), Hawaii’s state senate is requesting that "every domestic and foreign insurance company that has ever issued commercial general liability policies in the State is requested to submit information to the Legislature on the total premiums received for their commercial general liability policies during the past ten years"
�Read Full Text of Hawaii State Senate Resolution
� Read the court decisionRead the full story...Reprinted courtesy of
General Contractor’s Intentionally False Certifications Bar It From Any Recovery From Owner
November 03, 2016 —
Masaki James Yamada – Ahlers & Cressman PLLCIn a public works dispute in Massachusetts, a Massachusetts Court judge ruled that a general contractor could not recover any of its over $14 million claim against a public owner because it had violated its contract with the Owner by certifying that it had paid its subcontractors in full and on time when in fact it had not.[i] The case involves a contract dispute arising from a state and federally-funded project to design and construct a fiber optic network in western Massachusetts. The Owner was a state development agency established and organized to receive both state and federal funding to build a 1,200–mile fiber optic network known as MassBroadband123 in Western Massachusetts (the Project). Of that amount, $45.4 million was awarded pursuant to the American Recovery and Reinvestment Act of 2009 (ARRA). One of the stated goals of ARRA was (as its title suggests) to create jobs in the wake of the 2008 recession and to provide a direct financial boost to those impacted by the economic crisis. In the context of the instant case, that meant that, if there were to be subcontractors on the job providing labor and materials, they needed to be paid on a timely basis in keeping with the statutory purpose of stimulating the economy.
Read the court decisionRead the full story...Reprinted courtesy of
Masaki James Yamada, Ahlers & Cressman PLLCMr. Yamada may be contacted at
myamada@ac-lawyers.com
