Virginia is to be commended for encapsulating a comprehensive privacy regime in just eight pages. Its Consumer Data Protection Act (VCDPA), which goes into effect Jan. 1, 2023, offers a tailored approach to consumer privacy that contrasts sharply with the sweeping California Consumer Privacy Act (CCPA), its accompanying regulations, and the forthcoming changes wrought by the California Privacy Rights Act (CPRA). Still, Virginia’s law could use a little clarification on five key points.
Kudos to Kristen Mathews, a partner with Morrison & Foerster, and Courtney Barton, Vice President and Senior Counsel at Marriott International, who brought these ...