Employers with operations in California should be aware of the California Consumer Privacy Act (“CCPA”), a new privacy law that applies to data collected about California-based employees.   HR professionals should be aware that, although the CCPA refers to “consumers,” as currently drafted the CCPA’s definition of a “consumer” will apply to California-based employees.

Which employers will have to comply with the CCPA?

Employers with employees in California will need to comply with the CCPA if their business falls into one of the following three categories:

1. Their business buys, sells, or shares the “personal information” of 50,000 “consumers” or “devices”;

2. Their business has gross revenue greater than $25 million; or

3. Their business derives 50% or more of its annual revenue from sharing personal information.

What are the key implications of having to comply with the CCPA?

The Employers who