Sovy CEO John Popolizio and Privacy Architect Edward Percarpio recently presented for this (ISC)2 webinar on the California Consumer Privacy Act (CCPA).
They looked at how the CCPA matches up against the other American privacy laws, as well as international legislation like the GDPR, PIPEDA, and the Brazilian LGPD. They also explored the CCPA’s impact on business processes.
Key takeaways include:
– The CCPA is the most robust consumer privacy law in the US, adding new rights like access, deletion, portability, and non-discrimination. But it’s still very different from the GDPR, so you will need to meet different compliance requirements for each law.
– CCPA focuses mostly on the interface between a business and a consumer. Because of that, a strong compliance strategy starts with making sure your business has a rights management platform for its users and a CCPA compliant privacy notice.
– Your IT team will need to assess its personal data collection and storage practices to make sure you are recording information appropriately and can retrieve it in the event of a rights request.
– Your marketing team needs to make sure that you offer the ability to opt-out of any third-party sharing practices, and that your pricing models don’t discriminate based on your customers’ privacy preferences.
Start your data privacy compliance journey with Sovy today with our front-facing rights management platform, CCPA compliant policies and templates and internal record keeping. Get in touch today for more information.