Due Diligence in M&A: Website Compliance with CIPA & CCPA to Avoid “Trap and Trace” Claims Post-Close

By Kathryn Rattigan on October 16, 2025

Mergers and acquisitions (M&A) can be transformative, but hidden compliance risks—especially regarding privacy and data protection—often lurk beneath the surface, especially regarding privacy and data protection. In California, strict laws like the California Consumer Privacy Act (CCPA) and the California Invasion of Privacy Act (CIPA) are being aggressively enforced through litigation. Plaintiffs’ firms are increasingly targeting companies whose websites…

Data Privacy & Security Considerations in Mergers & Acquisitions Due Diligence

By Linn Foster Freedman on January 31, 2019

Posted in New + Now

It has long been standard practice to include data privacy and security due diligence in mergers and acquisitions for technology companies. Over the last several years, there has been an increase in data breaches which are costly and damaging to a company’s brand, and therefore, we have seen an uptick in companies including detailed requests…

Data Privacy + Cybersecurity Insider

Due Diligence

Due Diligence in M&A: Website Compliance with CIPA & CCPA to Avoid “Trap and Trace” Claims Post-Close

Data Privacy & Security Considerations in Mergers & Acquisitions Due Diligence

Topics

Archives