140 Days Until The California Consumer Privacy Act Becomes Law - Why Aren't More Businesses Complying?
September 09, 2019 —
Kyle Janecek and Jeff Dennis – Newmeyer DillionCalifornia, for better or for worse, has a reputation as being a trendsetter, and has taken the lead in the United States by passing the "California Consumer Privacy Act," or "CCPA." This massive law has been on the books since 2018, but hasn't taken effect yet. However, the timeframe for businesses to be in compliance is rapidly diminishing. Currently, there are less than five months for businesses to (a) familiarize themselves with what the law requires; (b) determine how and if they are affected by the law; and (c) determine how to be in compliance with the law's demands. Right now, companies aren't making a rush to become CCPA compliant, but this is a mistake. Below are a few of the misconceptions that businesses have, as well as the realities.
MISCONCEPTION 1: It doesn't apply to my company.
For many businesses, it will apply. The baseline of the CCPA is: (1) does the business do anything with California residents (including employees); (2) is it for-profit; and (3) it either has $25 million annual revenue, "sells" 50,000 pieces of personal information or receives 50% or more of its revenue from personal information.
It does not matter if the business is in Nevada, Arizona, Texas or Delaware. So long as there is some connection to Californian residents, exists to make a profit, and otherwise satisfies either the profit, volume, or revenue percentage requirements, it applies. On that note, even if a business does not sell personal information, it does not mean it does not "sell" personal information under the law, as it includes any exchange of personal information for valuable consideration, such as the exchange of consumer data between companies, or the sale of information to a University for study.
MISCONCEPTION 2: The Federal Government will stop it.
One of the main reasons we have the CCPA is because the Federal Government has not acted on this issue. Furthermore, there is a high likelihood that any Federal law will not be substantially different from the CCPA, keeping the core principles in place. It's also unlikely that such a law will take effect and be passed in the remaining five months before the CCPA begins enforcement. Companies must accept that ideals of transparency, choice, consent and reasonable security as they relate to consumers' personal information are here to stay.
MISCONCEPTION 3: California is still changing the law, so I should wait.
California is still in the process of fine-tuning the CCPA, but this is no reason to wait. Fixes to questions arising regarding the CCPA have come out piecemeal, and continued changes, including expansions are likely. For example, employees were previously not addressed specifically within the CCPA, but are being addressed in the planned AB 25, excluding employees from some of the CCPA's protections. Conversely, there have also been planned provisions to expand on the protections and enforcement mechanisms of the CCPA, including a broad and expansive private right of action to permit individuals to sue for technical violations of the statute, like having to wait too long for a response to the demand, even if no actual damage is suffered. Again, the foundational requirements of the CCPA will not change via amendment – so companies should act now.
MISCONCEPTION 4: It's too expensive.
Actually no. Many of the basic actions are not cost-prohibitive, and are actions a business would want to do anyways: (a) Employee training to avoid data breaches and how to respond to user requests; (b) data mapping to quickly find, access, and arrange protections for consumer data; and (c) ensuring you have reasonable cyber security. This can even be turned into a competitive advantage, as consumers increasingly value companies that share their interests, including their privacy.
A compliance mistake could be extraordinarily costly. Currently, a violation for statutory violations of the CCPA can carry a penalty between $2,500 to $7,500 per individual violation. Furthermore, there is a private right of action with statutory damages of $100 to $750 per individual violation that could quickly balloon to exceed $5 million at a minimum, and invites class action/lawsuits for a data breach.
While this is true of almost every legal risk, an ounce of prevention is worth a pound of cure. The penalties on the higher end of the spectrum are for willful violations, and attempts to comply with the law can act to curb potential risks.
What Should I Do?
If you feel CCPA compliance is important to your business, and decide to prepare for the CCPA with us, our firm has created a 90-day CCPA compliance program where our team will collaborate with you to determine a scalable, practical, and reasonable way for you to meet your needs, without breaking the bank. Let us provide you a free initial consultation to see if our CCPA compliance program works for you.
Kyle Janecek is an associate in the firm's Privacy & Data Security practice, and supports the team in advising clients on cyber related matters, including policies and procedures that can protect their day-to-day operations. For more information on how Kyle can help, contact him at kyle.janecek@ndlf.com.
Jeff Dennis is the head of the firm's Privacy & Data Security practice. Jeff works with the firm's clients on cyber-related issues, including contractual and insurance opportunities to lessen their risk. For more information on how Jeff can help, contact him at jeff.dennis@ndlf.com.
About Newmeyer Dillion
For 35 years, Newmeyer Dillion has delivered creative and outstanding legal solutions and trial results that align with the business objectives of clients in diverse industries. With over 70 attorneys working as an integrated team to represent clients in all aspects of business, employment, real estate, privacy & data security and insurance law, Newmeyer Dillion delivers tailored legal services to propel clients' business growth. Headquartered in Newport Beach, California, with offices in Walnut Creek, California and Las Vegas, Nevada, Newmeyer Dillion attorneys are recognized by The Best Lawyers in America©, and Super Lawyers as top tier and some of the best lawyers in California and Nevada, and have been given Martindale-Hubbell Peer Review's AV Preeminent® highest rating. For additional information, call 949.854.7000 or visit www.newmeyerdillion.com.
Read the court decisionRead the full story...Reprinted courtesy of
Now Available: Seyfarth’s 50 State Lien Law Notice Requirements Guide (2023-2024 Edition)
December 23, 2023 —
Seyfarth Shaw LLPSeyfarth’s Construction team is pleased to announce the release of our 2023-2024 edition of the 50 State Lien Law Notice Requirements Guide. The Guide provides the general time requirements for filing lien notices in each state, plus Washington, DC.
Reprinted courtesy of
Seyfarth Shaw LLP
Read the full story... Read the court decisionRead the full story...Reprinted courtesy of
ASCE Statement on Congress Passage of National Debt Limit Suspension
June 12, 2023 —
The American Society of Civil EngineersThe following is a statement by Tom Smith, Executive Director, American Society of Civil Engineers (ASCE):
WASHINGTON, D.C. – The
American Society of Civil Engineers (ASCE) applauds Congress for passing a measure to avoid a U.S. debt default while safeguarding the critical funding allotments for our nation's infrastructure from the Infrastructure Investment and Jobs Act (IIJA). The bipartisan Fiscal Responsibility Act of 2023 (
H.R. 3746) will not only protect funding from the IIJA, but it also takes steps to advance permitting reform, a major priority for ASCE and the civil engineering community.
Streamlining permitting is crucial to ensuring we make the most of available funding mechanisms. ASCE is pleased to see that many elements of the
BUILDER Act made it into the debt ceiling suspension, including setting deadlines for environmental reviews and providing clarity around permitting requirements. Although further actions are needed to streamline these processes, the Fiscal Responsibility Act is a crucial first step towards implementing much-needed permitting reform to keep valuable projects moving and bring benefits to communities across the country.
ASCE once again applauds Congress and the Administration for taking these necessary steps to protect the U.S. economy and infrastructure systems.
ABOUT THE AMERICAN SOCIETY OF CIVIL ENGINEERS
Founded in 1852, the American Society of Civil Engineers represents more than 150,000 civil engineers worldwide and is America's oldest national engineering society. ASCE works to raise awareness of the need to maintain and modernize the nation's infrastructure using sustainable and resilient practices, advocates for increasing and optimizing investment in infrastructure, and improve engineering knowledge and competency. For more information, visit www.asce.org or www.infrastructurereportcard.org and follow us on Twitter, @ASCETweets and @ASCEGovRel.
Read the court decisionRead the full story...Reprinted courtesy of
Courts Favor Arbitration in Two Recent Construction Dispute Cases
November 21, 2018 —
Jason Plaza - The Subrogation StrategistRecent court decisions have signaled the courts’ proclivity to prefer arbitration over full-fledged litigation when provisions in construction contracts are called into question. While the courts recognize a party’s constitutional right to a jury trial, the courts also lean strongly towards resolving disputes via arbitration as a matter of public policy, especially if a construction contract carves out arbitration as an alternative to litigation.
In Avr Davis Raleigh v. Triangle Constr. Co., 818 S.E.2d 184 (N.C. App. 2018), the North Carolina Appeals Court reviewed the issue of whether the contracting parties selected binding arbitration as an alternative to litigation. The contract at issue was an AIA A201-2007 form document. Under the terms of the contract, the parties elected to arbitrate claims under $500,000 but to litigate claims over this amount. However, if there were several claims under $500,000 but the aggregate of all claims exceeded $500,000, then the contract implied that all claims would be arbitrated. Since the claims involved were an amalgamation of the two, the contracting parties disagreed about whether the arbitration provision would apply. The plaintiff interpreted this provision to mean litigation was mandatory when at least one claim exceeded $500,000 and that arbitration was mandatory when no single claim exceeded this amount. In contrast, the defendant interpreted this provision as meaning that when there were several claims worth less than $500,000 individually, but more than $500,000 aggregately, then all claims must be arbitrated. The trial court agreed with the plaintiff’s interpretation.
Read the court decisionRead the full story...Reprinted courtesy of
Jason Plaza, White & Williams LLP
Changes to Judicial Selection in Mexico Create a New Case for Contractual ADR Provisions
November 25, 2024 —
Juan Pablo Sandoval - The Dispute ResolverThe Mexican Congress recently discussed and approved a Constitutional Amendment called the “Judiciary Amendment” which was ironically published in the Official Gazette on September 15, 2024, the day before Mexican Independence Day.
With this Judiciary Amendment, the Mexican Congress determined that Federal Judges, Federal Magisters and the Ministers of the Supreme Court will now be elected through direct and popular election. Before the Judiciary Amendment, Federal Judges and Magisters used to have a judicial career; many of them started as law clerks and were promoted step by step until becoming Judge or Magister.
Ministers of the Supreme Court were appointed by the Senate through an election of three candidates designated by the President.
Read the court decisionRead the full story...Reprinted courtesy of
Juan Pablo Sandoval, COMAD, S.C.Mr. Sandoval may be contacted at
jpsandoval@comad.com.mx
Montana Federal Court Holds that an Interior Department’s Federal Advisory Committee Was Improperly Reestablished
December 09, 2019 —
Anthony B. Cavender - Gravel2GavelOn August 13, 2019, in a case that may have an impact on the leasing of federal lands for energy development in the future, the U.S. District Court for the Missoula, Montana Division, issued a ruling in the case of Western Organization of Resource Councils v. Bernhardt, which involves the application of the Federal Advisory Committee Act (FACA) to the Department of the Interior’s Royalty Policy Committee. This advisory committee, initially established in 1995 to provide advice to the Secretary on issues related to the leasing of federal and Indian lands for energy and mineral resources production, is subject to the provisions of FACA, codified at 5 U.S.C. app. Sections 1-16. The plaintiffs challenged the operations of this advisory committee, which was reestablished for two years beginning in 2017, because it allegedly “acts in secret and works to advance the goals of only one interest: the extractive industries that profit from the development of public gas, oil, and coal.” More specifically, the plaintiffs alleged that this advisory committee violated FACA because: (a) it was not properly established as provided in the implementing GSA rules (which are located at 41 CFR Section 102-3); (b) did not provide public notice of its meetings and publicly disseminate its materials; (c) ensure that its membership was fairly balanced; and (d) failed to exercise independent judgment without inappropriate influences from special interests.
Read the court decisionRead the full story...Reprinted courtesy of
Anthony B. Cavender, PillsburyMr. Cavender may be contacted at
anthony.cavender@pillsburylaw.com
Understanding the Details: Suing Architects and Engineers Can Get Technical
November 02, 2017 —
Steven M. Cvitanovic & Stephen M. Tye - Haight Brown & Bonesteel LLPBefore suing an architect or engineer for professional negligence, a plaintiff must obtain a “certificate of merit” (“Certificate”) under Code of Civil Procedure section 411.35. Boiled down to the basics, the Certificate declares that the attorney consulted with and received an opinion from an expert that a reasonable and meritorious case exists against said design professional. The Certificate must be filed before serving the complaint on any defendant, but can be filed within 60 days under certain circumstances. This rule was recently analyzed against another long-standing rule in California, known as the “relation-back doctrine.” Under the relation-back doctrine, a court will deem a later-filed pleading, such as an amended complaint, to be deemed filed at the time of an earlier complaint.
In Curtis Engineering Corp. v. Superior Court of San Diego County, No. D072046, (Cal. Ct. App. 10/23/17), the Fourth Appellate Court considered the interplay between section 411.35 and the relation-back doctrine, holding that a Certificate filed more than 60 days after filing the original pleading does not relate back to the filing of the original pleading.
Reprinted courtesy of
Steven Cvitanovic, Haight Brown & Bonesteel LLP and
Stephen Tye, Haight Brown & Bonesteel LLP
Mr. Cvitanovic may be contacted at scvitanovic@hbblaw.com
Mr. Tye may be contacted at stye@hbblaw.com
Read the court decisionRead the full story...Reprinted courtesy of
Cybersecurity "Flash" Warning for Construction and Manufacturing Businesses
April 26, 2021 —
Jeffrey M. Dennis - Newmeyer DillionThe FBI recently released its 2020 Internet Crime Report (Report), which details and analyzes complaints received through the FBI’s Internet Crime Complaint Center (IC3). In 2020, IC3 received a record number of complaints – nearly 800,000, with reported losses in excess of $4.1 billion. Companies must acknowledge that cybercrime is a real, dangerous threat to their business, and understand how, and why, these threats continue to escalate. At a minimum, businesses should take several proactive steps to protect themselves.
What is IC3?
IC3 is an online platform hosted by the FBI, which exists to provide the public with a trusted place to report cybercrime to the FBI. Since its inception in 2000, the IC3 has received 5.6 million complaints, and has averaged approximately 440,000 complaints over each of the last five years. The complaint figure for 2020 is nearly double that average.
Read the court decisionRead the full story...Reprinted courtesy of
Jeffrey M. Dennis, Newmeyer DillionMr. Dennis may be contacted at
jeff.dennis@ndlf.com
