United States of America: California Consumer Privacy Act cybersecurity audit compliance regulations become applicable to businesses with revenues under USD 50 million

On 28 August 2023, the California Privacy Protection Agency (CPPA) released materials ahead of its …

On 22 November 2024, the California Privacy Protection Agency (CPPA) opened the public consultation…

On 14 January 2025, the California Privacy Protection Agency (CPPA) closes the public consultation …

On 28 March 2025, the California Privacy Protection Agency (CPPA) published its revised draft regul…

On 9 May 2025, the California Privacy Protection Agency (CPPA) published modified text of proposed …

On 23 September 2025, the California Office of Administrative Law adopted the regulations under the…

On 1 January 2026, the regulations adopted under the California Consumer Privacy Act (CCPA) enter i…

On 1 April 2028, businesses with annual gross revenues exceeding USD 100 million reach the first co…

On 1 April 2029, businesses with annual gross revenues between USD 50 million and USD 100 million r…