Griffen Thorne
by

Over the last few months, cannabis and CBD companies have been subject to some pretty massively publicized cases. We’ve seen partnership disputes, consumer class actions, shareholder suits, agency enforcement actions, intellectual property cases, and more. One thing virtually nobody is talking about—or prepared for—are the inevitable wave of CCPA suits. Before I explain what CCPA […]

Griffen Thorne
by

Most states’ regulated cannabis regimes require licensed cannabis companies to use seed-to-sale track-and-trace software. In California, the state has contracted the entire track-and-trace program to the METRC program. The METRC program isn’t yet fully implemented because many operators don’t yet have annual licenses. Our California cannabis attorneys frequently assist clients with track-and-trace compliance and preparation. […]

Griffen Thorne
by

Virtually everyone knows about breaches of companies like Equifax. Massive breaches have happened to established, mega-companies who still took major reputational and monetary hits after they were breached. What many people don’t realize is that it doesn’t take a major breach to devastate a business. We don’t want to be dramatic, but we also don’t […]

Griffen Thorne
by

Unless you’ve been living under a rock for the past few months, you’ve probably read about the host of sweeping new laws in California, like its new Internet of Things law, cannabis privacy law, or net neutrality law, to name just a few. California has long been regarded a trailblazer when it comes to making […]

Griffen Thorne
by

Two years ago, we published a series of posts about the cannabis industry’s embrace of the Internet of Things (“IoT”)—the network of physical objects connected through the Internet—for use in everything from garden sensors to dispensers. In that same series, we also discussed some of the potential legal risks and ramifications of using the IoT […]

Nathalie Bougenies
by

Last week we discussed the data breach notification laws with which cannabis companies doing business in Oregon must comply following a cyber intrusion. Today, we discuss the safeguards these companies must adopt to protect the security, confidentiality and integrity of customers and employee (collectively, “Consumer”)’s personal information, who reside in Oregon. Pursuant to Oregon Revised […]

Nathalie Bougenies
by

A few weeks ago, we mentioned that cannabis companies that fall victim to a data breach are required, under state law, to inform employees and customers whose data was compromised by the intrusion. However, not every stolen piece of information demands notification. This post further dives into these laws—all 50 states have now enacted breach […]

Search

 
 

About this Blog

The Canna Law Blog™ is a forum for discussion about the practical aspects of cannabis law and how it impacts those involved in this growing industry. We will provide insight into how canna businesspeople can use the law to their advantage…

Read More

 
 

Stay Connected

   

 

SUBSCRIBE BY EMAIL

 
 

Topics

Archives

 
 
 
 

Disclaimer

Please be mindful that possessing, using, distributing and selling marijuana are all federal crimes and that this blog is not intended to give you any legal advice, much less lead you to believe that marijuana is legal under federal law.