U.S. House of Representatives Passes Bill to Ban TikTok Unless Divested from ByteDance

Yesterday, with broad bipartisan support, the U.S. House of Representatives voted overwhelmingly (352-65) to support the Protecting Americans from Foreign Adversary Controlled Applications Act, designed to begin the process of banning TikTok’s use in the United States. This is music to my ears. See a previous blog post on this subject.

The Act would penalize app stores and web hosting services that host TikTok while it is owned by Chinese-based ByteDance. However, if the app is divested from ByteDance, the Act will allow use of TikTok in the U.S.

National security experts have warned legislators and the public about downloading and using TikTok as a national security threat. This threat manifests because the owner of ByteDance is required by Chinese law to share users’ data with the Chinese Communist government. When downloading the app, TikTok obtains access to users’ microphones, cameras, and location services, which is essentially spyware on over 170 million Americans’ every move, (dance or not).

Lawmakers are concerned about the detailed sharing of Americans’ data with one of its top adversaries and the ability of TikTok’s algorithms to influence and launch disinformation campaigns against the American people. The Act will make its way through the Senate, and if passed, President Biden has indicated that he will sign it. This is a big win for privacy and national security.

Copyright © 2024 Robinson & Cole LLP. All rights reserved.
by: Linn F. Freedman of Robinson & Cole LLP

For more news on Social Media Legislation, visit the NLR Communications, Media & Internet section.

Governor Wolf Signs Act 151 Addressing Data Breaches Within Local Entities

On Thursday, November 3, 2022, Governor Tom Wolf signed PA Senate Bill 696, also known as Act 151 of 2022 or the Breach of Personal Information Notification Act.  Act 151 amends Pennsylvania’s existing Breach of Personal Information Notification Act, strengthening protections for consumers, and imposing stricter requirements for state agencies, state agency contractors, political subdivisions, and certain individuals or businesses doing business in the Commonwealth.  Act 151 expands the definition of “personal information,” and requires Commonwealth entities to implement specific notification procedures in the event that a Commonwealth resident’s unencrypted and unredacted personal information has been, or is reasonably believed to have been, accessed and acquired by an unauthorized person.  The requirements for state-level and local entities differ slightly; this Alert will address the impact of Act 151 on local entities.  While this law does not take effect until May 22, 2023, it is critical that all entities impacted by this law be aware of these changes.

For the purposes of Act 151, the term “local entities” includes municipalities, counties, and public schools.  The term “public school” encompasses all school districts, charter schools, intermediate units, cyber charter schools, and area career and technical schools.  Act 151 requires that, in the event of a security breach of the system used by a local entity to maintain, store, or manage computerized data that includes personal information, the local entity must notify affected individuals within seven business days of the determination of the breach.  In addition, local entities must notify the local district attorney of the breach within three business days.

The definition of “personal information” has been updated, and includes a combination of (1) an individual’s first name or first initial and last name, and (2) one or more of the following items, if unencrypted and unredacted:

  • Social Security number;
  • Driver’s license number;
  • Financial account numbers or credit or debit card numbers, combined with any required security code or password;
  • Medical information;
  • Health insurance information; or
  • A username or password in combination with a password or security question and answer.

The last three items were added by this amendment.  Additionally, the new language provides that “personal information” does not include information that is made publicly available from government records or widely distributed media.

Act 151 defines previously undefined terms, drawing a distinction between “determination” and “discovery” of a breach, and setting forth different obligations relating to each.  “Determination,” under the act, is defined as, “a verification or reasonable certainty that a breach of the security of the system has occurred.”  “Discovery” is defined as, “the knowledge of or reasonable suspicion that a breach of the security of the system has occurred.”  This distinction affords entities the ability to investigate a potential breach before the more onerous notification requirements are triggered.  A local entity’s obligation to notify Commonwealth residents is triggered when the entity has reached a determination that a breach has occurred.  Further, any vendor that maintains, stores, or manages computerized data on behalf of a local entity is responsible for notifying the local entity upon discovery of a breach, but the local entity is ultimately responsible for making the determinations and discharging any remaining duties under Act 151.

Another significant update afforded by Act 151 is the addition of an electronic notification procedure.  Previously, notice could be given: (1) by written letter mailed to the last known home address of the individual; (2) telephonically, if certain requirements are met; (3) by email if a prior business relationship exists and the entity has a valid email address; or (4) by substitute notice if the cost of providing notice would exceed $100,000, the affected class of individuals to be notified exceeds 175,000, or the entity does not have sufficient contact information.  Now, in addition to the email option, entities can provide an electronic notice that directs the individual whose personal information may have been materially compromised to promptly change their password and security question or answer, or to take any other appropriate steps to protect their information.

Act 151 also provides that all entities that maintain, store, or manage computerized personal information on behalf of the Commonwealth must utilize encryption –  this provision originally applied only to employees and contractors of Commonwealth agencies, but was broadened in Act 151.  Further, the act provides that all entities that maintain, store, or manage computerized personal information on behalf of the Commonwealth must maintain policies relating to the transmission and storage of personal information – such policies were previously developed by the Governor’s Office of Administration.

Finally, under Act 151, any entity that is subject to and in compliance with certain healthcare and federal privacy laws is deemed to be in compliance with Act 151.  For example, an entity that is subject to and in compliance with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) is deemed compliant with Act 151.

Although Act 151 is an amendment to prior legislation, the updates create potential exposure for local entities and the vendors that serve them.  For local municipalities, schools, and counties, compliance will require a proactive approach – local entities will have to familiarize themselves with the new requirements, be mindful of the personal information they hold, and ensure that their vendors are aware of their obligations.  Further, local entities will be required to implement encryption protocols, and prepare and maintain storage and transmission policies.

Originally Published by Babst Calland November 29, 2022. Article By Michael T. Korns and Ember K. Holmes of Babst, Calland, Clements & Zomnir, P.C.

Click here to read more legislative news on the National Law Review website.

© Copyright Babst, Calland, Clements and Zomnir, P.C.

More Places, Less Spaces: California is Driving Down Development Costs

In an effort to decrease the skyrocketing development costs and reduce greenhouse gas emissions, Assembly Bill 2097 (AB 2097) aims to eliminate a key obstacle for new developments: parking. More specifically, starting on January 1, 2023, this law prohibits public agencies from imposing minimum automobile parking requirements for residential, commercial and other development projects if the project is located within a 1/2-mile of a “High-Quality Transit Corridor”[1] or a “Major Transit Stop.”[2]

Prior to the enactment of AB 2097, cities and counties retained the authority to impose a minimum number of parking spaces required for new developments. This condition is typically the result of a calculation found in the city or county’s zoning code, and is usually determined based on the use or type of project being developed, regardless of project specifics. Oftentimes, the use of a universal calculation results in excess parking. For example, a new restaurant may be required to provide 4 parking spaces for every 100 square feet of use even if the restaurant concept does not necessitate a large number of parking spaces or if the restaurant is in a pedestrian- or transit-friendly location. While California remains in the throes of a housing crisis, some areas within the state boast an oversupply of parking spaces. For example, Los Angeles County has 18.6 million parking spaces, which equates to almost 2 parking spaces for every 1 resident.[3] This statistic is similar in the Bay Area where there are 1.9 parking spaces for every 1 resident.[4]

Moreover, not only can a static calculation result in unnecessary parking (and blacktop), it can add untenable costs to new developments. For example, new residential developments are typically required to provide 1 to 2 parking spaces per unit. The requirement results in an additional cost of approximately $36,000 per unit.[5] As the cost to develop residential projects is at an all-time high,[6] builders are welcoming all efforts to reduce the cost and eliminate unnecessary development “standards.”

To avoid a complete free-for-all, under AB 2097, public agencies will still retain the ability to impose a minimum parking requirement, if, within 30 days of the receipt of a completed application, the public agency makes a written finding that not imposing a minimum automobile parking requirement would have a substantial negative impact. However, there are a number of exceptions to this caveat that wholly restrict public agencies from imposing a minimum parking condition. These exceptions include certain affordable housing projects or small residential housing projects.

For parking spaces that are voluntarily included in proposed project designs, public agencies may still require: (i) spaces for car share vehicles; (ii) parking spaces to be shared with the public; or (iii) for the project to charge for parking. Nothing in AB 2097 shall reduce or eliminate the requirement that new developments provide for the installation of electric vehicle supply equipment (i.e., EV-charging stations) or to provide parking spaces accessible to persons with disabilities.

AB 2097 is intended to give developers more flexibility and lower the costs associated with development, which will – hopefully – result in an influx of housing and the redevelopment of vacant buildings where it may not have been previously feasible to provide parking in a quantity necessary to meet a jurisdiction’s minimum requirements. By reducing the oversupply of parking, there is the expectation that the use of mass transit will increase, thereby reducing traffic, greenhouse emissions and air pollution.

Critics of AB 2097 are concerned that the elimination of parking requirements could actually weaken local efforts to provide more affordable housing as many public agencies offer reductions in parking requirements to incentivize developers to add on-site affordable housing units to the project.[7] There is also concern that, despite the decrease in availability, many residents will continue to own vehicles, which – ironically – will lead to increase parking demand and congestion.

Although there is a lot of speculation of AB 2097, many are hopeful that it is a step in the right direction when it comes to addressing California’s housing crisis. As Governor Gavin Newsom stated when he signed the bill: “Reducing housing costs for everyday Californians and eliminating emissions from cars: That’s what we call a win-win.”

FOOTNOTES

[1] “High-Quality Transit Corridor” means a corridor with a fixed-route bus service with service intervals no longer than fifteen minutes during peak commute hours.

[2] “Major Transit Stop” means a site containing an existing rail or bus rapid transit station, a ferry terminal served by bus or rail, or the intersection of two or more major bus routes with a frequency of fifteen minutes or less during peak commute periods.

[3] Aguiar-Curry, Cecilia. Assembly Committee on Local Government – AB 2097 (Friedman) – As Introduced February 14, 2022. (April 20, 2022. )

[4] Inventorying San Francisco Bay Area Parking Spaces: Technical Report Describing Objectives, Methods, and Results. Mineta Transportation Institute – San Jose State University. (February 2022.)

[5] Some estimates place the aveage cost of one residential unit at $1,000,000 in development costs. (The Costs of Affordable Housing Production: Insights from California’s 9% Low-Income Housing Tax Credit Program. Terner Center for Housing Innovation – UC Berkley. A Terner Center Report [March 2020].)

[6] Dillon, Liam and Posten, Ben. Affordable Housing in California Now Routinely Tops $1 Million per Apartment to Build. Los Angeles Times. (June 2, 2022.)

[7] California Daily News.

Copyright © 2022, Sheppard Mullin Richter & Hampton LLP.

Five New Employment Laws that Every California Employer Should Know

A new year brings new employment laws for California employers.  California employers will want to begin revising employee policies and handbooks now, so that they are prepared to comply with these new laws when the majority of them go into effect on January 1, 2023.  Here are five new employment laws that every California employer should know:

AB 1041 (Expanded Definition of “Family Member” for Medical and Sick Leave)

Through AB 1041, the California legislature amended Government Code section 12945.2 and Labor Code section 245.5 to expand the definition of “designated person” for purposes of employee medical leave.  Section 12945.2 provides qualifying employees with up to 12 workweeks in any 12-month period for unpaid family care and medical leave.  Section 245.5 relates to California paid sick leave.  Both sections permit an employee to take protected leave to care for a “family member,” which is currently defined as a child, parent, grandparent, grandchild, sibling, spouse, or domestic partner.  With the passage of AB 1041, the Legislature added a “designated person” to this list of “family members” for whom an employee may take protected leave.  A “designated person” is defined as “any individual related by blood or whose association with the employee is the equivalent of a family relationship.”  In light of this broad definition, employers should be prepared to provide employees with leave to care for a wider range of persons.  An employee may identify his or her designated person at the time of requesting protected leave.  However, an employer may limit an employee to one designated person per 12-month period.

AB 1949 (Bereavement Leave)

AB 1949 adds section 12945.7 to the Government Code, in order to provide employees with protected leave for bereavement.  Under this new law, eligible employees may request up to five days of bereavement leave upon the death of a qualifying family member.  Family member is defined as a spouse, child, parent, sibling, grandparent, grandchild, domestic partner, or parent in law.  Although the employee must complete bereavement leave within three months of the family member’s death, the employer may not require that the five days be used consecutively.  Statutory bereavement leave is unpaid, but the employer must allow the employee to use any accrued and unused paid vacation, personal leave, sick leave, or other paid time off for this purpose.  Section 12945.7 prohibits discrimination, interference or retaliation against an employee for taking bereavement leave; also, the employer must maintain confidentiality when an employee takes bereavement leave. Finally, section 12945.7 does not apply to certain union employees, with an existing agreement regarding bereavement leave.

SB 1162 (Posting Pay Ranges and EEO Reporting Requirements)

SB 1162 modifies Government Code section 12999 and Labor Code section 432.3 to require employers to provide candidates with salary ranges on job postings, report employee compensation and demographic information to the California Civil Rights Department (formerly the DFEH) on an annual basis, and retain relevant records.  For job postings (including those posted by third parties), employers with 15 or more employees will be required to include a pay range, which is defined as the salary or hourly wage range that the employer reasonably expects to pay for the position.  In addition to the current requirement that, upon request, the employer must provide a candidate a pay range, the employer must now also provide existing employees with a pay range, when requested.  Failure to comply with the pay range disclosure or record retention requirements can result in penalties of up to $10,000 per violation.

The new reporting requirement concerns annual employer pay data reports.  Employers must now report the median and mean hourly rate by each combination of race, ethnicity, and sex, within each job category, with the first report due on May 10, 2023, based on 2022 pay data.  Employers with 100 or more employees hired through labor contractors must now produce data on pay, hours worked, race/ethnicity, and gender information in a separate report.  Employers who fail to timely file these required reports face civil penalties of up to $200 per employee.

Finally, employers must retain records of job titles and wage rate histories for each employee for the duration of the employee’s employment and three years after termination.  Failure to comply with these retention requirements can result in penalties of up to $10,000 per violation.

AB 2188 (Off the Job Cannabis Use Protection)

Effective January 1, 2024, AB 2188 adds section 12954 to the Government Code, which prohibits employers from discriminating against a person because of cannabis use while off the job, with some exceptions.  Employers may take action against a person who fails a pre-employment drug test, or other employer-required drug test, that does “not screen for non-psychoactive cannabis metabolites.”  This is because, according to the California Legislature, cannabis “matabolites do not indicate impairment, only that the individual has consumed cannabis in the last few weeks.”  The employer may administer a performance-based impairment test, and terminate any employee who is found to be impaired in the workplace.  This new law does not apply to employees in the building or construction industry, or in positions requiring a federal background investigation or clearance, and does not preempt state or federal laws that require employees to be tested for controlled substances.

AB 152 (COVID-19 Supplemental Paid Sick Leave Extension)

AB 152 modified Labor Code section 248.6 and 248.7 in order to extend COVID-19 Supplemental Paid Sick Leave (SPSL), previously blogged about here, which was expected to expire on September 30, 2022.  This new modification allows California employees to use any remaining SPSL through December 31, 2022.  It does not provide employees with new or additional SPSL.  In a departure from the original version of the law, when an employer requires an employee to take a COVID-19 test five days or later after a positive test result, the employer is now permitted to require the employee to submit to a second diagnostic test within no less than 24 hours.  If the employee refuses, the employer may decline to provide additional SPSL.  The employer obligation to cover the cost of any employee COVID-19 tests remains in effect.

© 2022 Proskauer Rose LLP.

IRS Delays Additional Amendment Deadlines for Major Retirement Legislation

The IRS has extended additional deadlines for required retirement plan amendments, similar to the extensions we discussed last month found here. Notice 2022-45 extends the deadline for amending qualified retirement plans to comply with certain provisions of:

  • The Coronavirus Aid, Relief, and Economic Security Act (“CARES Act”)

  • The Taxpayer Certainty and Disaster Tax Relief Act of 2020 (“Relief Act”)

Notice 2022-45 specifically extends the amendment deadlines for Section 2202 of the CARES Act and Section 302 of the Relief Act. Section 2202 of the CARES Act permitted plans to: (1) provide coronavirus-related distributions, (2) increase retirement plan loan sizes, and (3) pause retirement plan loan payments. Section 302 of the Relief Act permitted qualified disaster distributions.

Notice 2022-45 extends the amendment deadlines relating to the applicable provisions in the CARES and Relief Acts for non-governmental qualified plans and 403(b) plans to December 31, 2025. Governmental plans (including qualified plans, 403(b) plans maintained by public schools, and 457(b) plans) are granted further delays depending on the underlying circumstances of the plan sponsor.  These extended deadlines under Notice 2022-45 align with the previous deadline extensions under Notice 2022-33. Accordingly, most plan sponsors will be able to adopt a single amendment to comply with the SECURE Act, BAMA, the CARES Act, and the Relief Act.

Notably, tax-exempt 457(b) plans do not appear to be covered by the relief granted by either Notice 2022-33 or Notice 2022-45. Accordingly, these plans remain subject to a December 31, 2022, amendment deadline.

© 2022 Miller, Canfield, Paddock and Stone PLC

Speaker Pelosi Expresses Concerns With Federal Privacy Bill’s Preemption Provision

On Thursday, House Speaker Nancy Pelosi expressed concerns with certain features of the American Data Privacy and Protection Act (“ADPPA”) and its broad preemption provision, which as currently drafted would override the California Consumer Privacy Act (“CCPA”) and its subsequent voter- approved amendments.  The ADPPA was favorably reported by the House Committee on Energy and Commerce in July by a vote of 53-2.  The bill has not yet been scheduled for a vote on the House floor. Speaker Pelosi “commended” the Energy and Commerce Committee for its efforts, while also praising California Democrats for having “won the right for consumers for the first time to be able to seek damages in court for violations of their privacy rights.”  Speaker Pelosi noted that California leads the nation in protecting consumer privacy and it was “imperative that California continues offering and enforcing the nation’s strongest privacy rights.”

Speaker Pelosi stated that she and others would be working with Chairman Frank Pallone (D-NJ) to address concerns related to preserving  California privacy laws.  Although Speaker Pelosi’s comments cast doubt on the future of the ADPPA, we continue to believe that it will clear the House. We anticipate only modest tweaks to the preemption provision, which must be acceptable to the Republican leadership of the committee for the bill to move forward. As Speaker Pelosi noted, the bill contains a private right of action for consumers—the single most important provision to Republicans in return for strong preemption language. After more than a decade of effort, the Democratic leadership of the House will be hard pressed to let the perfect be the enemy of the really good.

© Copyright 2022 Squire Patton Boggs (US) LLP

What’s in the American Data Privacy and Protection Act?

Congress is considering omnibus privacy legislation, and it reportedly has bipartisan support. If passed, this would be a massive shake-up for American consumer privacy, which has been left to the states up to this point. So, how does the American Data Privacy and Protection Act (ADPPA) stack up against existing privacy legislation such as the California Consumer Privacy Act and the Virginia Consumer Data Protection Act?

The ADPPA includes a much broader definition of sensitive data than we’ve seen in state-level laws. Some notable inclusions are income level, voicemails and text messages, calendar information, data relating to a known child under the age of 17, and depictions of an individual’s “undergarment-clad” private area. These enumerated categories go much further than recent state laws, which tend to focus on health and demographic information. One asterisk though – unlike other state laws, the ADPPA only considers sexual orientation information to be sensitive when it is “inconsistent with the individual’s reasonable expectation” of disclosure. It’s unclear at this point, for example, if a member of the LGBTQ+ community who is out to friends would have a “reasonable expectation” not to be outed to their employer.

Like the European Union’s General Data Protection Regulation, the ADPPA includes a duty of data minimization on covered entities (the ADPPA borrows the term “covered entity” from HIPAA). There is a laundry list of exceptions to this rule, including one for using data collected prior to passage “to conduct internal research.” Companies used to kitchen-sink analytics practices may appreciate this savings clause as they adjust to making do with less access to consumer data.

Another innovation is a tiered applicability, in which all commercial entities are “covered entities,” but “large data holders” – those making over $250,000,000 gross revenue and that process either 5,000,000 individuals’ data or 200,000 individuals’ sensitive data – are subject to additional requirements and limitations, while “small businesses” enjoy additional exemptions. Until now, state consumer privacy laws have made applicability an all-or-nothing proposition. All covered entities, though, would be required to comply with browser opt-out signals, following a trend started by the California Privacy Protection Agency’s recent draft regulations. Additionally, individuals have a private right of action against covered entities to seek monetary and injunctive relief.

Finally, and controversially, the ADPPA explicitly preempts all state privacy laws. It makes sense – the globalized nature of the internet means that any less-stringent state law would become the exception that kills the rule. Still, companies that only recently finalized CCPA- and CPRA-compliance programs won’t appreciate being sent back to the drawing board.

Read the bill for yourself here.

Copyright © 2022 Robinson & Cole LLP. All rights reserved.

Tillis Bill Tries to Fix Section 101

This recently introduced bill would replace section 101 with a lot of text. The commentators are all commentating, but I have yet to read whether or not the “outlaw” status of claims to diagnostic methods—led by varying interpretations of Mayo v. Prometheus—has been clearly lifted by this bill. Here are the relevant parts, at least setting up the discussion on this point.

Section 101. Patent Eligibility

(a) IN GENERAL—Whoever [post- Thaler v. Vidal, we know that this must be a human being] invents or discovers any useful process, machine, manufacture, or composition of matter, or any useful improvement thereof, may obtain a patent therefore, subject only to the exclusions in section (b) and to the further conditions and requirements of this title.

(b) ELIGIBILITY EXCLUSIONS.—

(1) IN GENERAL.—Subject to paragraph (2), a person may not obtain a patent for any of the following, if claimed as such:

***

(B) A process that—

          ***

(iii) occurs in nature wholly independent of, and prior to, any human activity.

(C) An unmodified human gene, as that gene exists in the human body.

(D) An unmodified natural material, as that material exists in nature.

(2)  CONDITIONS.—

 ***

(B) HUMAN GENES AND NATURAL MATERIALS.—For the purposes of subparagraphs (C) and (D) of paragraph (1), a human gene or natural material that is isolated, purified, enriched, or otherwise altered by human activity, or that is otherwise employed in a useful invention or discovery, shall not be considered to be unmodified.

(c) ELIGIBILITY

(1) IN GENERAL.—In determining whether, under this section, a claimed invention is eligible for a patent, eligibility shall be determined

(A) By considering the claimed invention as a whole and without discounting or disregarding any claim element; and

(B) Without regard to—

***

(ii) whether a claim element is known, conventional, routine, or naturally occurring

***

Well now, does this bill abrogate Mayo v. Prometheus and permit patents on diagnostic assays as simple as “If A, then B” (If assay indicates high homocysteine then diagnostic conclusion is low cobalamin)? Let’s start with a simple “If A, then B” claim, like the one in Athena (If autoantibodies to MuSK are detected, subject may be afflicted with MG). The presence of antibodies that bind to MuSK occurs in nature wholly independently and prior to any human activity. See, section I (B) (iii). So to be patentable, a process comprising the detection of the antibodies or of a MuSK-antibody complex in order to diagnose MG must fall within one of the “conditions” of the statute as set forth in 2(B).

The problem, and I hope it is not a big one, is that 2(B) does not mention “processes” employing “natural materials.” Applicants are left to argue that the anti-MuSK antibodies per se are altered by human activity, e.g., by binding to MuSK, and so are “modified.” They can also argue that the antibodies are employed in a useful discovery since they are the biomarker for MG. But, of course, the applicants wanted to claim a process, not just the biomarker detected by the assay.

Regarding diagnostics, is the key phrase “otherwise employed in a useful invention or discovery”? Of course, the argument is that the useful invention or discovery is the diagnostic process, from initial sampling to drawing a diagnostic conclusion. For years I have proposed that s. 101 bills on diagnostic clams need a sentence like, “A process includes recognition of the utility of a naturally occurring correlation.” In other words, you are not trying to patent the correlation itself, like “blood containing antibodies that bind to MuSK”. The necessary steps include both isolation and detection of the antibodies and recognition that their presence indicates something about the patient. (Note that Mayo did not invent the correlation between the level of the metabolites of the administered drug and the need to adjust the dose of the drug. Mayo took a known correlation and refined the optimal range of metabolite concentration that arose after administration of the “parent drug”. One could call this the recognition that an improved correlation could be reached, but nothing in the Tillis bill says that, apart from novelty, the invention needs to be improved over any earlier version or alternative. This draft of the bill needs some work but it is a valuable start to ending the s. 101 nightmare.

© 2022 Schwegman, Lundberg & Woessner, P.A. All Rights Reserved.

A Summary of Inflation Reduction Act’s Main Energy Tax Proposals

On August 7, the Senate passed the Inflation Reduction Act of 2022 (the “IRA”). The IRA contains a significant number of climate and energy tax proposals, many of which were previously proposed in substantially similar form by the House of Representatives in November 2021 (in the “Build Back Better Act”).

Extension and expansion of production tax credit

Section 45 of the Internal Revenue Code provides a tax credit for renewable electricity production. To be eligible for the credit, a taxpayer must (i) produce electricity from renewable energy resources at certain facilities during a ten-year period beginning on the date the facility was placed in service and (ii) sell that renewable electricity to an unrelated person.[1] Under current law, the credit is not available for renewable electricity produced at facilities whose construction began after December 31, 2021.

The IRA would extend the credit for renewable electricity produced at facilities whose construction begins before January 1, 2025. The credit for electricity produced by solar power –which expired in 2016—would be reinstated, as extended by the IRA.

The IRA would also increase the credit from 1.5 to 3 cents per kilowatt hour of electricity produced.

A taxpayer would be entitled to increase its production tax credit by 500% if (i) its facility’s maximum net output is less than 1 megawatt, (ii) it meets the IRA’s prevailing wage and apprenticeship requirements,[2] and (iii) the construction of its facility begins within fifty-nine days after the Secretary publishes guidance on these requirements.

In addition, the IRA would add a 10% bonus credit for a taxpayer (i) that certifies that any steel, iron, or manufactured product that is a component of its facility was produced in the United States (the “domestic content bonus credit”) or (ii) whose facility is in an energy community (the “energy community bonus credit”).[3]

Extension, expansion, and reduction of investment tax credit

Section 48(a) provides an investment tax credit for the installation of renewable energy property. The amount of the credit is equal to a certain percentage (described below) of the property’s tax basis. Under current law, the credit is limited to property whose construction began before January 1, 2024.

The IRA would extend the credit to property whose construction begins before January 1, 2025. This period would be extended to January 1, 2035 for geothermal property projects. The IRA would also allow the investment tax credit for energy storage technology, qualified biogas property, and microgrid controllers.

The IRA would reduce the base credit from 30% to 6% for qualified fuel cell property; energy property whose construction begins before January 1, 2025; qualified small wind energy property; waste energy recovery property; energy storage technology; qualified biogas property; microgrid controllers; and qualified facilities that a taxpayer elects to treat as energy property. For all other types of energy property, the base credit would be reduced from 10% to 2%.

A taxpayer would be entitled to increase this base credit by 500% (for a total investment tax credit of 30%) if (i) its facility’s maximum net output is less than 1 megawatt of electrical or thermal energy, (ii) it meets the prevailing wage and apprenticeship requirements, and (iii) its facility begins construction within fifty-nine days after the Secretary publishes guidance on these requirements.

In addition, a taxpayer would be entitled to a 10% domestic content bonus credit and 10% energy community bonus credit (subject to the same requirements as for bonus credits under section 45). The IRA would also add a (i) 10% bonus credit for projects undertaken in a facility with a maximum net output of 5 megawatts and is located in low-income communities or on Indian land, and (ii) 20% bonus credit if the facility is part of a qualified low-income building project or qualified low-income benefit project.

Section 45Q (Carbon Oxide Sequestration Credit)

Section 45Q provides a tax credit for each metric ton of qualified carbon oxide (“QCO”) captured using carbon capture equipment and either disposed of in secure geological storage or used as a tertiary injection in certain oil or natural gas recovery projects.  While eligibility for the section 45Q credit under current law requires that projects begin construction before January 1, 2026, the IRA would extend credit eligibility to those carbon sequestration projects that commence construction before January 1, 2033.

The IRA would increase the amount of tax credits for projects that meet certain wage and apprenticeship requirements. Specifically, the IRA would increase the amount of section 45Q credits for industrial facilities and power plants to $85/metric ton for QCO stored in geologic formations, $60/metric ton for the use of captured carbon emissions, and $60/metric ton for QCO stored in oil and gas fields.  With respect to direct air capture projects, the IRA would increase the credit to $180/metric ton for projects that store captured QCO in secure geologic formations, $130/metric ton for carbon utilization, and $130/metric ton for QCO stored in oil and gas fields.  The proposed changes in the amount of the credit would apply to facilities or equipment placed in service after December 31, 2022.

The IRA also would decrease the minimum annual QCO capture requirements for credit eligibility to 1,000 metric tons (from 100,000 metric tons) for direct air capture facilities, 18,750 metric tons (from 500,000 metric tons) of QCO for an electricity generating facility that has a minimum design capture capacity of 75% of “baseline carbon oxide” and 12,500 metric tons (from 100,000 metric tons) for all other facilities.  These changes to the minimum capture requirements would apply to facilities or equipment that begin construction after the date of enactment.

Introduction of zero-emission nuclear power production credit

The IRA would introduce, as new section 45U, a credit for zero-emission nuclear power production.

The credit for a taxable year would be the amount by which 3 cents multiplied by the kilowatt hours of electricity produced by a taxpayer at a qualified nuclear power facility and sold by the taxpayer to an unrelated person during the taxable year exceeds the “reduction amount” for that taxable year.[4]

In addition, a taxpayer would be entitled to increase this base credit by 500% if it meets the prevailing wage requirements.

New section 45U would not apply to taxable years beginning after December 31, 2032.

Biodiesel, Alternative Fuels, and Aviation Fuel Credit

The IRA would extend the existing tax credit for biodiesel and renewable diesel at $1.00/gallon and the existing tax credit for alternative fuels at $.50/gallon through the end of 2024.  Additionally, the IRA would create a new tax credit for sustainable aviation fuel of between $1.25/gallon and $1.75/gallon.  Eligibility for the aviation fuel credit would depend on whether the aviation fuel reduces lifecycle greenhouse gas emissions by at least 50%, which corresponds to a $1.25/gallon credit (with an additional $0.01/gallon for each percentage point above the 50% reduction, resulting in a maximum possible credit of $1.75/gallon). This credit would apply to sales or uses of qualified aviation fuel before the end of 2024.

Introduction of clean hydrogen credit

The IRA would introduce, as new section 45V, a clean hydrogen production tax credit. To be eligible, a taxpayer must produce the clean hydrogen after December 31, 2022 in facilities whose construction begins before January 1, 2033.

The credit for the taxable year would be equal to the kilograms of qualified clean hydrogen produced by the taxpayer during the taxable year at a qualified clean hydrogen production facility during the ten-year period beginning on the date the facility was originally placed in service, multiplied by the “applicable amount” with respect to such hydrogen.[5]

The “applicable amount” is equal to the “applicable percentage” of $0.60. The “applicable percentage” is equal to:

  • 20% for qualified clean hydrogen produced through a process that results in a lifecycle greenhouse gas emissions rate between 2.5 and 4 kilograms of CO₂e per kilogram of hydrogen;

  • 25% for qualified clean hydrogen produced through a process that results in a lifecycle greenhouse gas emissions rate between 1.5 and 2.5 kilograms of CO₂e per kilogram of hydrogen;

  • 4% for qualified clean hydrogen produced through a process that results in a lifecycle greenhouse gas emissions rate between 0.45 and 1.5 kilograms of CO₂e per kilogram of hydrogen; and

  • 100% for qualified clean hydrogen produced through a process that results in a lifecycle greenhouse gas emissions rate of less than 0.45 kilograms of CO₂e per kilogram of hydrogen.

A taxpayer would be entitled to increase this base credit by 500% if (i) it meets the prevailing wage and apprenticeship requirements or (ii) it meets the prevailing wage requirements, and its facility begins construction within fifty-nine days after the Secretary publishes guidance on the prevailing wage and apprenticeship requirements.


FOOTNOTES

[1] All references to section are to the Internal Revenue Code.

[2] The IRA would require new prevailing wage and apprenticeship requirements to be satisfied in order for a taxpayer to be eligible for increased credits. To satisfy the prevailing wage requirements, a taxpayer would be required to ensure that any laborers and mechanics employed by contractors or subcontractors to construct, alter or repair the taxpayer’s facility are paid at least prevailing local wages with respect to those activities. To satisfy the apprenticeship requirements, “qualified apprentices” would be required to construct a certain percentage of the taxpayer’s facilities (10% for facilities whose construction begins before January 1, 2023 and 15% for facilities whose construction begins on January 1, 2024 or after). A “qualified apprentice” is a person employed by a contractor or subcontractor to work on a taxpayer’s facilities and is participating in a registered apprenticeship program.

[3] An “energy community” is a brownfield site; an area which has (or had at any time after December 31, 1999) significant employment related to the extraction, processing, transport, or storage of coal, oil, or natural gas; and a census tract in which a coal mine closed or was retired after December 31, 1999 (or an adjoining census tract).

[4] A “qualified nuclear power facility” is any nuclear facility that is owned by the taxpayer, that uses nuclear energy to produce electricity, that is not an “advanced nuclear power facility” as described in section 45J(d)(1),  and is placed in service before the date that new section 45U is enacted.

“Reduction amount” is, for any taxable year, the amount equal to (x) the lesser of (i) the product of 3 cents multiplied by the kilowatt hours of electricity produced by a taxpayer at a qualified nuclear power facility and sold by the taxpayer to an unrelated person during the taxable year and (ii) the amount equal to 80% of the excess of the gross receipts from any electricity produced by the facility (excluding an advanced nuclear power facility) and sold to an unrelated person during the taxable year; (y) over the amount equal to the product of 2.5 cents multiplied by the kilowatt hours of electricity produced by the taxpayer at a qualified nuclear power facility and sold by the taxpayer to an unrelated person during the taxable year.

[5] “Qualified clean hydrogen” is hydrogen that is produced (i) through a process that results in a lifecycle greenhouse gas emissions rate of no more than 4 kilograms of CO₂e per kilogram of hydrogen, (ii) in the United States, (iii) in the ordinary course of the taxpayer’s trade or business, (iv) for sale or use, and (v) whose production and sale or use is verified by an unrelated party. The IRA does not explain what “verified by an unrelated party” means.

© 2022 Proskauer Rose LLP.

Are You Ready for 2023? New Privacy Laws To Take Effect Next Year

Five new state omnibus privacy laws have been passed and will go into effect in 2023. Organizations should review their privacy practices and prepare for compliance with these new privacy laws.

What’s Happening?

While the US currently does not have a federal omnibus privacy law, states are beginning to pass privacy laws to address the processing of personal data. While California is the first state with an omnibus privacy law, it has now updated its law, and four additional states have joined in passing privacy legislation: Colorado, Connecticut, Utah, and Virginia. Read below to find out if the respective new laws will apply to your organization.

Which Organizations Must Comply?

The respective privacy laws will apply to organizations that meet particular thresholds. Notably, while most of the laws apply to for-profit businesses, we note that the Colorado Privacy Act also applies to non-profits. There are additional scope and exemptions to consider, but we provide a list of the applicable thresholds below.

The California Privacy Rights Act (CPRA) – Effective January 1, 2023

The CPRA applies to for-profit businesses that do business in California and meet any of the following:

  1. Have a gross annual revenue of over $25 million;
  2. Buy, receive, or sell the personal data of 100,000 or more California residents or households; or
  3. Derive 50% or more of their annual revenue from selling or sharing California residents’ personal data.

Virginia Consumer Data Protection Act (CDPA) – Effective January 1, 2023

The CDPA applies to businesses in Virginia, or businesses that produce products or services that are targeted to residents of Virginia, and that:

  1. During a calendar year, control or process the personal data of at least 100,000 Virginia residents, or
  2. Control or process personal data of at least 25,000 Virginia residents and derive over 50% of gross revenue from the sale of personal data.

Colorado Privacy Act (CPA) – Effective July 1, 2023

The CPA applies to organizations that conduct business in Colorado or produce or deliver commercial products or services targeted to residents of Colorado and satisfy one of the following thresholds:

  1. Control or process the personal data of 100,000 Colorado residents or more during a calendar year, or
  2. Derive revenue or receive a discount on the price of goods or services from the sale of personal data, and process or control the personal data of 25,000 Colorado residents or more.

Connecticut Act Concerning Personal Data Privacy and Online Monitoring (CTPDA) – Effective July 1, 2023

The CTPDA applies to any business that conducts business in the state, or produces a product or service targeted to residents of the state, and meets one of the following thresholds:

  1. During a calendar year, controls or processes personal data of 100,000 or more Connecticut residents, or
  2. Derives over 25% of gross revenue from the sale of personal data and controls or processes personal data of 25,000 or more Connecticut residents.

Utah Consumer Privacy Act (UCPA) – Effective December 31, 2023

The UCPA applies to any business that conducts business in the state, or produces a product or service targeted to residents of the state, has annual revenue of $25,000,000 or more, and meets one of the following thresholds:

  1. During a calendar year, controls or processes personal data of 100,000 or more Utah residents, or
  2. Derives over 50% of the gross revenue from the sale of personal data and controls or processes personal data of 25,000 or more Utah residents.

The Takeaway 

Organizations that fall under the scope of these respective new privacy laws should review and prepare their privacy programs. The list of updates may involve:

  • Making updates to privacy policies,
  • Implementing data subject request procedures,
  • How your business is handling AdTech, marketing, and cookies,
  • Reviewing and updating data processing agreements,
  • Reviewing data security standards, and
  • Providing training for employees.
© 2022 ArentFox Schiff LLP