WATCH NOW

Ask the Expert: Are You Ready for the CPRA?

You’ve got questions about the California Privacy Rights Act (CPRA), and we’ve called in top-notch legal experts to answer them.

Sign up for our newsletter to get invited to upcoming events.

We want companies to comply with laws but not make it overly burdensome for them to do so.

Debbie Reynolds

The California Privacy Rights Act (CPRA) is a new consumer data privacy law passed in California that goes into effect in January 2023. The CPRA is a set of rules that clarifies and augments the California Consumer Privacy Act (CCPA) that went into effect in January 2020.

Some significant features of the CPRA include:

  • Creating a California Privacy Protection Agency (CPPA)
  • The new right for individuals to request correction of data
  • A new definition for sensitive data that is derived from multiple data points

Key takeaways

Here’s some really important things you should remember:

  • businesses need to be transparent
  • businesses need to have a process and procedures in place
  • businesses must stay vigilant

 

 

 

 

 

 

 

Watch Now: Ask the Expert: Are You Ready for the CPRA?

Dive into something interesting

Though it’s 2 years down the road, you need to start getting ready for CPRA now. The best way to start getting ready for CPRA is to understand which parts of the law apply to your business, because not every part of the law will apply to all businesses. It is also essential to understand how your company will respond to the data subject access request or notice from regulators about data practices.

Data minimization will reduce their risk and cost of data breaches or unauthorized access to consumer information. It is also essential that businesses make sure that their privacy policy aligns with their business actions so that they are not liable for things like false claims or deceptive practices.

 

Table of contents

What Is CCPA and How to Comply

The CCPA was enacted into law on January 1, 2020, and despite popular opinion, has different requirements that the GDPR. Here's a run-down of the act: who needs to comply, what to expect as a business, and how to ensure that you aren’t facing penalties of non-compliance.
Read it