The California Consumer Privacy Act ("CCPA") was enacted in early 2018 as a political compromise to stave off a poorly drafted, and plaintiff’s friendly ballot initiative. Although the CCPA is scheduled to go into force in early 2020, there is a great deal of confusion regarding the requirements of the CCPA, including the degree to which it aligns with other privacy regulations such as the European General Data Protection Regulation (“GDPR”).
To help address that confusion, BCLP published the California Consumer Privacy Act Practical Guide, and is publishing a multi-part series that discusses the questions most frequently asked by clients concerning the CCPA.
Q. Does the CCPA require that companies start drafting privacy policies for their employees?
In comparison, the European GDPR requires that a company provide a privacy notice when it collects information from an individual. As companies, by necessity, collect personal information – including sensitive categories of personal information – from, and about, their employees and applicants, companies typically are required to provide those individuals with a privacy notice.