Are businesses strictly liable if a data breach occurs?

Can a company be sued under the CCPA for failing to honor a deletion request?

Can a company be sued under the CCPA for failing to honor an access request?

Can a company be sued under the CCPA for failing to post a “do not sell my personal information” link?

Can a company be sued under the CCPA for failing to post a privacy notice?

Can a Company be Sued Under the CCPA for Failing to Protect Personal Information?

Can a company decide whether to deidentify information or delete information if it receives a ‘right to be forgotten’ request?

Can a consumer bring suit in a California state court under the CCPA even if they were not injured by a data breach?

Can a service provider use and transfer personal information if they anonymize or aggregate it?

CCPA Security FAQs: Does a consumer have to establish injury to bring suit in federal court in California under the CCPA?

Did California Declare War on Attorney Client Privilege? How the CCPA Impacts Privilege Protections

Does the CCPA Allow an Individual Whose Email Address is Compromised Through a Data Breach to Recover Statutory Damages?

Does the CCPA allow an individual whose IP address is compromised through a data breach to recover statutory damages?

Does the CCPA allow an individual whose work email address or business contact information is compromised through a data breach to bring a cause of action for damages?

Does the CCPA exempt businesses from having to disclose privileged communications?

Does the CCPA identify a maximum statutory damage that can be awarded?

Does the CCPA identify a minimum statutory damage that must be awarded?

Does the CCPA open financial institutions to increased litigation?

Does the CCPA Open Health Care Providers to Increased Litigation?

Does the CCPA open insurance companies to increased litigation?

If a company experiences a data security breach, and receives a “Right to be Forgotten” request from a data subject whose information was involved, does the company have to delete the information that they have about the individual?

If a company receives a data access request from an employee, will it have to share with them performance reviews and other notes and comments in their HR file that implicate other employees?

Is a service provider permitted to disclose personal information if it receives a civil subpoena or a discovery request?

Is a Service Provider Responsible if its Client Violates the CCPA?

Is there a private right of action for failing to disclose the “sale” of information to third party behavioral advertisers?

Is there an obligation to monitor service providers under the CCPA?

Once a data breach is reported to the state of California, is it posted to a website?

What Are “Reasonable Security Procedures and Practices” under the CCPA?

What Categories of Information Could Trigger A Consumer Class Action if Breached?

What factors will courts look to when determining what statutory damages to award?

What is the statutory penalty for violation of the CCPA where there is no private right of action?

What legal theory are plaintiffs most likely to assert in a data breach class action in addition to the CCPA?

What Other Legal Theories Could a Plaintiff Assert in a Data Breach Class Action in Addition to the CCPA?