Sep. 17, 2025

TOPICS
ENTITIES
- CPPA - California Privacy Protection Agency

Purchase a Reprint of this Article

Updating Compliance Programs to Address the CPPA’s Regulations on ADMT and Risk Assessments

John Ying and Amy Pimentel
McDermott Will & Schulte

Over the past two years, the California Privacy Protection Agency (CPPA) has wrestled with drafting regulations on automated decision-making technology: how to define it; the requirements for businesses that use it; and how consumers can exercise their knowledge, access and opt-out data rights. The CPPA has now voted to finalize those rules along with regulations on how businesses should conduct risk assessments. In this guest article, McDermott Will & Schulte attorneys John Ying and Amy Pimentel break down the draft regulations’ key requirements, provide businesses with a roadmap to analyze whether they are in scope, and offer advice on building or updating compliance programs to address new obligations. See “California’s Pending Automated Decision-Making Technology Regulations Will Further Focus Consumers’ Attention on AI” (Feb. 5, 2025).

To read the full article

Continue reading your article with a CSLR subscription.

Most-Read Articles

Aug. 13, 2025
CFTC Commissioner Urges Tougher Diligence and Closer Cooperation to Thwart Cyber Threats
- Cyber Crime
Sep. 3, 2025
CIPA Jury Verdict Against Meta: Privacy Litigation Strategies and Lessons
- Data Privacy Litigation
Sep. 10, 2025
Unpacking the AI Risks Disclosed in 2025 SEC Filings
- SEC Disclosure
Jul. 23, 2025
Navigating DOJ Rules for Data Brokerage and Vendor Agreements
- DOJ Enforcement
May 7, 2025
DOJ Guidance on Bulk Sensitive Data Rules: Enforcement Grace Period and Prohibited Transactions
- DOJ Enforcement

Women to Watch: Contributions, Achievements and Observations of Outstanding Female Professionals

To mark International Women’s Day, women editors and reporters at ION Analytics interviewed outstanding women in the industries and jurisdictions we cover. In this part, Law Report Group editors Jill Abitbol, Robin L. Barton and Megan Zwiebel profile notable women in data privacy, cybersecurity, private funds and anti-corruption law, including Anne-Gabrielle Haie, Jessica Lee, Micaela McMurrough, Laura Perkins, Amanda Raad, Madelyn Calabrese, Ranah Esmaili and Genna Garver. Enjoy reading their inspiring remarks here.