The California Consumer Privacy Act: What Happened and What’s to Come

Last year ended with businesses scrambling to be ready for the California Consumer Privacy Act’s January 1 deadline. The CCPA’s entry into force did not, however, resolve implementation complexities or answer myriad questions about how the Act will be interpreted. Moreover, the California Attorney General will finalize regulations during 2020 that are likely to expand compliance obligations and narrow flexibility. How are companies handling these uncertainties? What should companies be doing to prepare for CCPA enforcement beginning on July 1, 2020? How can “reasonable security” be documented?

Please join us for a webinar discussing benchmarking and these questions:

  • How are companies tackling the CCPA’s ambiguities?
  • Is there any PI that doesn’t need to be returned to consumers?
  • How should businesses prepare to “cure” alleged violations and defend private data breach litigation?
  • What more will the final regulations require?


Colleen Theresa Brown, Partner
Christopher Fonzone, Partner
Kate Heinzelman, Partner
Alan Charles Raul, Partner
Clay Northouse, Associate
Sheri Porath Rockwell, Associate

1:00-2:30 p.m. EST / 10:00-11:30 a.m. PST CLE Credit Offered


Ahead of the webinar, we’ve outlined steps that can be taken in our Guide to Cybersecurity Risk Mitigation in a Post-CCPA/GDPR World.


This program is presented by Sidley’s Privacy and Cybersecurity Practice and Technology Industry Group.

For more information or questions, please contact