Securiti Named a 2022 Cool Vendor in Data Security by GartnerDownload Now
The CPRA significantly changes and expands the CCPA's obligations, bringing California privacy law closer to the GDPR, necessitating businesses to ensure compliance and avoid penalties imposed by the CPRA.
The CPRA adds administrative fines for intentional violations involving the sensitive personal information of individuals under 16 years of age. Fines of up to $7,500 may be imposed on entities that aren’t adhering to the CPRA’s requirements.
CPRA improves the CCPA's privacy notice requirements, requiring firms to be honest with their customers if they gather sensitive personal information (SPI) and establish personal information retention periods.
Under the CPRA, businesses need to have the "Do Not Sell or Share My Personal Information" and the new "Limit the Use of My Sensitive Personal Information" options prominently displayed and readily available across multiple pages of their website. Any such requests should be honored and processed straightaway.
Additionally, the CPRA establishes the California Privacy Protection Agency (CPPA) as the exclusive agency responsible for interpreting and enforcing the law. The CPPA will be the first US-based regulatory entity solely focused on data privacy issues, superseding rule-making power from the California Attorney General.
Businesses that fall under the CPRA and do business in California have until January 1, 2023, to comply with the new regulation. Businesses will only be punished for CPRA infractions from July 1, 2023.
It should come as no surprise that CPRA will alter how websites acquire customers' personal data. The faster businesses understand and comply with CPRA, the greater their prospects of tightening data protection, meeting compliance, and gaining customer trust.
Securiti’s PrivacyOps platform automates compliance obligations using robotic automation, artificial intelligence, and machine learning, freeing up critical resources for other business areas. Automate all privacy obligations across your organization today to avoid the pitfalls of non-compliance with the CPRA.
The Multi-disciplinary practice to grow trust-equity of your brand and comply with privacy regulations
The California Privacy Rights Act (CPRA) is California’s state legislation that deals with protecting the digital privacy of its residents. Going into effect on January 1, 2023, it mandates all businesses to audit their data collection, storage, processing...
PO Box 13039,
Coyote CA 95013