What is the California Consumer Privacy Act (CCPA)
While EU businesses must now comply with GDPR, the majority of American based organizations are unaware of the preparation it takes to be compliant with the new privacy laws that are slowly becoming the norm. California has adopted a law similar to GDPR called the California Consumer Privacy Act, set to take effect on January 1st, 2020. Our California Consumer Privacy Act whitepaper goes into more detail about the Act and how it can affect your business.
The law is aimed to help the consumer stay protected and be in control of their data. There are a number of new provisions that allow the consumer certain rights. These rights include but are not limited to:
- Right to say no to the sale of your information
- Right to delete your data
- Right to know the categories and third-parties your data is shared with
- Right to know the business or commercial purpose of collecting your data
- Private right to take action if companies breach your data
Learn everything you need to know about the California Consumer Privacy Act (CCPA) by signing up for VinciWorks California Consumer Privacy Act (CCPA) course
Who does the California Consumer Privacy Act apply to?
The California Consumer Privacy Act (CCPA) is applicable to any business, partnership, company, corporation, or legal entity that operates for the purpose of profiting as well as collects consumer’s personal information from the state of California. Additionally, it must satisfy at least one of the following requirements:
- Has a gross annual revenue of $25 million or more
- Annually sells personal information of at least 100,000 consumers
- Acquires 50% or more of its annual revenue from selling consumer information
If you meet one or more of the provisions above, your business must comply with the California Consumer Privacy Act.
How to comply with the CCPA?
Note: Add this new subheading and content around the same
There are several steps organizations need to take in order to become compliant with the act:
- Examine your current data protection methods (what information you keep and how secure it is kept)
- Investigate what causes the problems (examine any past data breaches and how you handled them)
- Evaluate policies and training (are staff clear on policies and how are misuses reported?)
- Understand the changes that need to be made to comply with the new policy
- Implement the changes
Why you need to know
The California Consumer Privacy Act is California legislature. However, it pertains to any organization worldwide that does business in the State. The State of California is viewed as a trailblazer when it comes to regulations regarding technology and privacy, oftentimes with other states following suit. Additionally, California has the world’s fifth biggest global economy which necessitates that organizations will have to prepare for data protection changes in order to stay relevant – and in business.
VinciWorks’ California Consumer Privacy Act training
With the new policies in place for some time now, you should make sure you are compliant with the CCPA. As the biggest market within the United States, California has become a leader in consumer data privacy regulations, meaning companies across the country will have to follow suit even if only a fraction of their business is within California.
VinciWorks has created an interactive course to provide an overview of the requirements of the California Consumer Privacy Act.