You are here

The California Consumer Privacy Act - What it Is and What Clients Need to Know, Particularly In Light of COVID-19

April 7, 2020

The California Consumer Privacy Act (CCPA) went into effect on January 1, 2020, and it establishes new consumer privacy rights for California residents and imposes significant new duties and obligations on commercial businesses conducting business in the state of California. Consumer rights include the right to know what personal information a business is collecting, selling, and disclosing about them; the right to deletion; the right to opt-out of the sale of personal information; and the right not to be discriminated against (written as a business duty). These rights are intended to provide consumers with a level of control of their personal information and to establish transparency on the part of the businesses to comply with consumers’ exercise of their privacy rights. In addition, businesses are required to provide employee training; website notice of consumer rights and categories of personal information collected, sold, and disclosed; and to implement and maintain adequate security measures. The penalties of non-compliance can be severe, with avenues for both regulatory enforcement and private cause of action. 

During the webinar, Seyfarth partners Robert Milligan and John Tomaszewski and Seyfarth counsel Darren Dummit will provide a high-level discussion on what the CCPA is and strategies for CCPA compliance.


John Tomaszewski, Partner, Seyfarth Shaw LLP, United States
John Tomaszewski is a partner at Seyfarth Shaw. As part of Seyfarth’s International Data Protection practice group and co-leader of the Global Privacy & Security team, John has significant experience counseling companies regarding data protection and information security throughout the Americas, Europe, and Asia. John has prepared data protection documentation for human resource outsourcing companies, cloud service providers, social media companies, and a host of traditional brick-and-mortar and emerging-technology clients. He has also developed data licensing agreements, fair information practice statements, digital signature policies, nondisclosure agreements, and similar information security and confidentiality instruments. His clients have included myriad technology companies, as well as financial services, pharmaceutical, and e-commerce businesses of all sizes.




Robert Milligan, Partner, Seyfarth Shaw LLP, United States
Robert B. Milligan is a partner at Seyfarth Shaw and co-chair of Seyfarth’s Trade Secrets, Computer Fraud & Non-Competes practice group. Robert's practice encompasses a wide variety of commercial litigation and employment matters, including general business and contract disputes, unfair competition, trade secret misappropriation, and other intellectual property theft, franchise litigation, real estate litigation, insurance bad faith, invasion of privacy, consumer and employee class actions, wrongful termination, discrimination and harassment claims, wage and hour disputes, ADA and OSHA compliance, whistleblower and SOX cases, bankruptcy, and other business torts. His practice focuses on trade secret, non-compete, and data protection litigation and transactional work on a state, national, and international platform.




Darren Dummit, Counsel, Seyfarth Shaw LLP, United States
Darren Dummit is a counsel at Seyfarth Shaw. Darren’s experience as acting general counsel for one of the country’s largest golf course management companies, as well as the head litigator of all CA employment law claims (and medical malpractice claims) for the largest for-profit health care companies in the country, provides perspective and know-how from discovery through trial and appeal. On top of that, his experience as Co-Founder and CEO of a technology start-up that raised over $6 Million, as well as his experience as a consultant for billionaire family funds and sports-media companies, provide him with a unique insight into how the law interacts with the business side of things for his clients.