Comprehensive view of where Personal Identifiable Data resides in your organisation - Scored readiness evaluation and graphical illustration of compliance gaps - Roadmap for compliance with recommendations for immediate action - Insights to start building a robust data protection framework and inform your future technology choices - Helps meet the regulation requirements at a reduced cost, and potentially huge fines mitigated, not to mention reputational damage averted - Snapshot of legal landscape and your potential exposure - Easy, fast breach reporting - Vendor risk management for audits
The California Consumer Privacy Act (CCPA) is a US-based regulation that grants new rights to consumers regarding the collection and privacy of their personal data. Set to go into effect on January 1st, 2020, fines for companies found to be out of CCPA compliance can reach $7,500 per incident.
Data Privacy is rapidly becoming a basic human right. The GDPR, established to protect the rights of EU citizens, came into force on May 25, 2018. On June 28, 2018, Governor of California, Jerry Brown, signed the CCPA, which will enact some of the country’s most powerful consumer data privacy protections into law. Currently there are some 15 other states introducing their own data protection regulations. In parallel with this some notable large businesses are lobbying for a Federal regulation in place of the different State regulations. The CCPA will come into effect on January 1, 2020. The California attorney general, which generally enforces the CCPA, shall adopt regulations on or before July 1, 2020, and shall not bring an enforcement action until 6 months after the publication of such regulations or July 1, 2020.
Just like the GDPR does for EU citizens, the CCPA will serve to protect California consumer rights and encourage stronger privacy and greater transparency overall. California’s citizens will have the right to:
The CCPA applies to businesses (“for-profit entities that collect consumer data”) that do any of the following:
One of the challenges faced by multinational organisations is how they will address the plethora of privacy regulations applicable to them. Whilst no one can anticipate all of these and provide a software tool that guarantees to address them, a well thought out product can provide the platform for best practice data privacy management. Proteus® CCPAready™ has the ability to manage two or more regulations using the same interface substantially simplifies the handling of these requests.