Thank you for sharing!

Your article was successfully shared with the contacts you provided.
(l-r) Philip N. Yannella, Kim Phan, and Gregory Szewczyk, with Ballard Spahr. (l-r) Philip N. Yannella, Kim Phan, and Gregory Szewczyk, with Ballard Spahr.

Earlier this year, California became the first state in the country to provide a private cause of action for victims of a data breach. The private right of action is a key provision in the California Consumer Privacy Act (CCPA)—which became effective on Jan. 1, 2020—and allows California residents whose personal information is “subject to an unauthorized access and exfiltration, theft, or disclosure as a result of the business’ violation of the duty to implement and maintain reasonable security procedures and practices” to seek damages of $100-$750, per incident.

Want to continue reading?
Become a Free ALM Digital Reader.

Benefits of a Digital Membership:

  • Free access to 3 articles* every 30 days
  • Access to the entire ALM network of websites
  • Unlimited access to the ALM suite of newsletters
  • Build custom alerts on any search topic of your choosing
  • Search by a wide range of topics

*May exclude premium content
Already have an account?


ALM Legal Publication Newsletters

Sign Up Today and Never Miss Another Story.

As part of your digital membership, you can sign up for an unlimited number of a wide range of complimentary newsletters. Visit your My Account page to make your selections. Get the timely legal news and critical analysis you cannot afford to miss. Tailored just for you. In your inbox. Every day.

Copyright © 2020 ALM Media Properties, LLC. All Rights Reserved.