Progress

Current status
in consultation
14 Jan 2025 processing consultation
22 Nov 2024 in consultation
28 Aug 2023 under deliberation

Scope

Implementers
United States of America
Policy Area
Data governance
Policy Instrument
Cybersecurity regulation
Regulated Economic Activity
cross-cutting
Government Branch
executive
Government Body
data protection authority
Implementation Level
subnational

Timeline of events

14 Jan 2025
processing consultation

Closed consultation on CPPA proposed regulations on cybersecurity audits

On 14 January 2025, the California Privacy Protection Agency (CPPA) closes the public consultation on proposed regulations on California Consumer Privacy Act (CCPA) updates, cybersecurity audits, risk assessments, automated decision-making technolog…

Source
Event type order
Action type consultation closed
Government branch executive
Government body data protection authority
22 Nov 2024
in consultation

Opened consultation on CPPA proposed regulations on cybersecurity audits

On 22 November 2024, the California Privacy Protection Agency (CPPA) opened the public consultation on proposed regulations on California Consumer Privacy Act (CCPA) updates, cybersecurity audits, risk assessments, automated decision-making technolo…

Source
Event type order
Action type consultation opened
Government branch executive
Government body data protection authority
28 Aug 2023
under deliberation

Published draft Cybersecurity Audit Regulations

On 28 August 2023, the California Privacy Protection Agency (CPPA) released materials ahead of its 8 September 2023 board meeting, including draft Cybersecurity Audit Regulations. The CPPA clarified that formal rulemaking processes for cybersecurity…

Source
Event type order
Action type drafting
Government branch executive
Government body data protection authority