Skip to main content

On-demand webinar coming soon...

Blog

The CCPA vs. the GDPR comparison

December 19, 2019

Orange and yellow gradient

Both the California Consumer Privacy Act (CCPA) and the EU’s General Data Protection Regulation (GDPR) aim to protect individuals’ privacy rights, but there are some key differences between the two. In this blog post, we’ll look at some of the important distinctions between the CCPA vs. the GDPR.

Core Concepts

Only in the GDPR

  • Restrictions on how and why businesses can process personal data
  • Additional protections for Sensitive Personal Data
  • Privacy by design and privacy by default requirements
  • Opt-in consent as a legal basis of processing
     

Only in the CCPA

  • Personal information includes data about devices and households
  • Right to Object/Opt-Out only covers the sale of personal information (narrower than GDPR Right to Object)
  • Access rights are broader
     

CCPA vs. GDPR terminology

In addition to differences in their core concepts, the CCPA and GDPR have variances in terminology.

Consumer (CCPA) vs. data subject (GDPR)

Under the CCPA, a consumer is a natural person who must be a California resident. According to the GDPR, a data subject is any identified or identifiable natural person, that is, a person who can be identified directly or indirectly.  In contrast to the CCPA’s residency requirements, a data subject under the GDPR does not necessarily need to be an EU citizen or resident.

The GDPR applies outside of the EU when a company sells products or services to individuals inside the EU or when individuals are targeted or monitored. It covers “processing” of personal data, defined to include any operation performed on personal data, including collection.
 

How is personal information defined by the CCPA vs the GDPR?

Personal information (CCPA)

The CCPA broadly defines personal information (PI) as information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a consumer or household.

Personal data (GDPR)

The GDPR defines personal data as any information relating to an identified or identifiable person, by reference to an identifier. In fact, an individual can be both a consumer and a data subject if an EU-established company processes personal data of California residents.

Business (CCPA)

The CCPA classifies the following as a business:

  • A for-profit organization (sole proprietorship, partnership, corporation, LLC, association, or other legal entity)
  • That collects consumers’ personal information (online or offline)
  • Determines the purpose and means of the processing
  • Does business in the State of California
  • Plus one or more of the following:
  • Has annual gross revenues in excess of $25 million
  • Alone or in combination, annually buys, receives for the business’ commercial purposes, sells, or shares for commercial purposes, the personal information of 50,000 or more consumers, households, or devices.
  • Derives 50 percent or more of its annual revenues from selling consumers’ personal information.
     

Controller/processor (GDPR)

The GDPR defines the controller the organization that determines the purposes and means of the processing.  The GDPR applies under the following circumstances:

  • Where the controller or its processor is established in the EU, or
  • The processing personal data of EU residents by a non-EU controller or processor, where it relates to:
  • offering of goods or services, or
  • monitoring of EU residents’ behavior (insofar as the behavior takes place in the EU); or
  • Processing of personal data by a controller not established in the EU, but in a place where Member State law applies by virtue of public international law (i.e., an EU Member State embassy)
     

Right to opt-out vs. the right to object and the right to withdraw consent

Under the CCPA, the Right to Opt-Out means:

  • At any time, consumers can request a business to stop selling their personal information to third parties
  • Business must wait 12 months to ask a consumer to opt back into the sale of personal information
  • Businesses that sell personal information must post a link on their homepages that says “Do Not Sell My Personal Inform” so consumers can know about and exercise their opt-out rights

Under the GDPR, the Right to Object means:

  • The data subject’s right to object to processing “on grounds relating to his or her particular situation, at any time”
  • The scope includes processing based on legitimate interests, based on performance of task in public interest/exercise of official authority and research purposes

Under the GDPR, the Right to Withdraw Consent means that:

  • At any time, the data subject can withdraw consent when the legal basis of processing was based on consent
  • Withdrawal must be as easy as it was to give consent
     

How can businesses legally collect and use personal data?

CCPA compliance

The CCPA does not explicitly list legal grounds that businesses must rely upon to collect and use personal information. However, individuals have the right to opt-out of the sale after collection and can instruct businesses to stop selling their personal information.

Under the CCPA, there are several instances where businesses are required to collect the consent of the consumer. These include where the consumer is entering into a scheme that offers financial incentives based on the personal information provided. The CCPA allows businesses to sell minors’ data on the basis of valid consent, but consent is not required for the collection of the information.

GDPR compliance

The GDPR sets out 6 legal bases under Article 6 that organizations can rely upon to lawfully collect and use personal data. Processing personal data is considered lawful under the GDPR if at least one of the following applies:

  • The data subject has given consent to the processing of his or her personal data for one or more specific purposes
  • Processing is necessary for the performance of a contract to which the data subject is party or in order to take steps at the request of the data subject prior to entering into a contract
  • Processing is necessary for compliance with a legal obligation to which the controller is subject
  • Processing is necessary in order to protect the vital interests of the data subject or of another natural person
  • Processing is necessary for the performance of a task carried out in the public interest or in the exercise of official authority vested in the controller
  • Processing is necessary for the purposes of the legitimate interests pursued by the controller or by a third party, except where such interests are overridden by the interests or fundamental rights and freedoms of the data subject which require protection of personal data, in particular where the data subject is a child
     

CCPA vs GDPR: Enforcement & penalties

What is a violation under CCPA?

The CCPA outlines monetary penalties for unintentional and intentional violations. These range from $2500 per unintentional violation to $7500 per intentional violation with no maximum penalty outlined by the law. Violations of the CCPA are assessed and penalties recovered through civil action brought by the California Attorney General and issued in court.

On March 17, 2021, the establishment of the California Privacy Protection Agency (CPPA) was announced. The board will oversee, implement, and enforce the CCPA and the CPRA, a role previously fulfilled by the California Attorney General.

What are the types of GDPR breaches?

Breaches of the GDPR’s provisions are typically bucketed into two categories each with different levels of monetary penalty attached. Depending on the nature, gravity, and duration of the infringement, the penalty for non-compliance with the GDPR may be up to either:

  • 2% of global annual turnover or €10 million, whichever is higher; or
  • 4% of global annual turnover or €20 million, whichever is higher.

In general, the lower penalty amount is issued for breaches of controller or processor obligations. Breaches of data subjects’ rights and the GDPR’s data protection principles will result in fines from the higher tier being issued.
 

How OneTrust helps you comply with the CCPA and GDPR

OneTrust is a compliance management solution that helps organizations of all sizes simplify time to CCPA and GDPR compliance through start-to-finish privacy program automation.

Both the GDPR and the CCPA grant individuals rights that enable them to protect their privacy. Regardless of where you are in your privacy program, it’s never too late to start preparing for the CCPA. For more information on our CCPA Same Day Fast Track Implementation Program or to request a live OneTrust for CCPA software demo, visit www.onetrust.com/ccpa-compliance or email info@OneTrust.com.


You may also like

Webinar

Privacy Management

CPRA in action: OneTrust Live Demo

Join us for a deep dive tour of our suite of technology solutions for operationalizing and automating CPRA requirements across Do Not Share, Consumer Rights and privacy governance operations.

August 01, 2024

Learn more

Webinar

Privacy Management

CPRA in action: OneTrust Live Demo

Join us for a deep dive tour of our suite of technology solutions for operationalizing and automating CPRA requirements across Do Not Share, Consumer Rights and privacy governance operations.

August 01, 2024

Learn more

Webinar

Privacy Management

Going beyond CCPA

Join us for an in-depth webinar on "Going Beyond CCPA," where we will explore the intricacies of privacy laws, compare major regulations, and provide guidance on enhancing your privacy policy.

July 25, 2024

Learn more

Webinar

Privacy Management

Going beyond CCPA

Join us for an in-depth webinar on "Going Beyond CCPA," where we will explore the intricacies of privacy laws, compare major regulations, and provide guidance on enhancing your privacy policy.

July 25, 2024

Learn more

Webinar

Privacy Management

Mastering data privacy: Navigating CCPA, CPRA, and beyond

Mastering Data Privacy: Expert Guidance on CCPA, CPRA, GDPR Compliance, Privacy Policy Best Practices, and Live Demo Insights

July 18, 2024

Learn more

Webinar

Privacy Management

The evolution of CCPA

Join us for an insightful webinar on "The Evolution of CCPA" where we will delve into the latest amendments, understand their impact, and explore the new requirements and implications for businesses.

July 18, 2024

Learn more

Webinar

Privacy Management

The evolution of CCPA

Join us for an insightful webinar on "The Evolution of CCPA" where we will delve into the latest amendments, understand their impact, and explore the new requirements and implications for businesses.

July 18, 2024

Learn more

Webinar

Privacy Management

Mastering data privacy: Navigating CCPA, CPRA, and beyond

Mastering Data Privacy: Expert Guidance on CCPA, CPRA, GDPR Compliance, Privacy Policy Best Practices, and Live Demo Insights

July 18, 2024

Learn more

Blog

Privacy & Data Governance

What California’s CCPA investigative sweep means for your mobile applications

The California Attorney General declared an investigative sweep of mobile apps that don't comply with certain CCPA opt-out and consumer request provisions.

Alex Cash

February 01, 2023 5 min read

Learn more

Blog

Privacy & Data Governance

What California’s CCPA investigative sweep means for your mobile applications

The California Attorney General declared an investigative sweep of mobile apps that don't comply with certain CCPA opt-out and consumer request provisions.

Alex Cash

February 01, 2023 5 min read

Learn more

Blog

Privacy & Data Governance

CCPA toll-free number requirement

The California Privacy Rights Act (CPRA) follows up the CCPA with new and expanded rights, retaining the toll-free number requirement.

Param Gopalasamy, CIPP/E, CIPM

December 15, 2022 4 min read

Learn more

Blog

Privacy & Data Governance

CCPA toll-free number requirement

The California Privacy Rights Act (CPRA) follows up the CCPA with new and expanded rights, retaining the toll-free number requirement.

Param Gopalasamy, CIPP/E, CIPM

December 15, 2022 4 min read

Learn more

Blog

Privacy & Data Governance

CCPA regulations: A timeline of amendments

Since its passing, the CCPA and its accompanying regulations have undergone several modifications. Here's your guide to understanding them better.

Param Gopalasamy

November 03, 2022 11 min read

Learn more

Blog

Privacy & Data Governance

CCPA regulations: A timeline of amendments

Since its passing, the CCPA and its accompanying regulations have undergone several modifications. Here's your guide to understanding them better.

Param Gopalasamy

November 03, 2022 11 min read

Learn more

Webinar

Consent & Preferences

Global Privacy Control: CCPA enforcement of GPC opt-out signals webinar

Watch this on-demand webinar to gain an overview of what Global Privacy Control (GPC) is, the benefits of the signal, and how it works.

October 30, 2022

Learn more

Webinar

Consent & Preferences

Global Privacy Control: CCPA enforcement of GPC opt-out signals webinar

Watch this on-demand webinar to gain an overview of what Global Privacy Control (GPC) is, the benefits of the signal, and how it works.

October 30, 2022

Learn more

Blog

Privacy & Data Governance

Navigating the CPRA’s “Do Not Sell or Share” requirement

CCPA consumer rights such as the right to opt out of the sale of personal information, have resulted in critical challenges. Learn how OneTrust helps.

Param Gopalasamy

October 28, 2022 5 min read

Learn more

Blog

Privacy & Data Governance

Navigating the CPRA’s “Do Not Sell or Share” requirement

CCPA consumer rights such as the right to opt out of the sale of personal information, have resulted in critical challenges. Learn how OneTrust helps.

Param Gopalasamy

October 28, 2022 5 min read

Learn more

Webinar

Privacy Management

Employee vs. consumer rights: Same concept, different reality

Join this webinar to learn about the rights request fulfillment complexities introduced by the end of the employee exclusion in the CPRA.

August 25, 2022

Learn more

Webinar

Privacy Management

Employee vs. consumer rights: Same concept, different reality

Join this webinar to learn about the rights request fulfillment complexities introduced by the end of the employee exclusion in the CPRA.

August 25, 2022

Learn more

Report

Privacy & Data Governance

CCPA survey final benchmarking report

Download the final 2019 CCPA survey and benchmarking report from the IAPP and OneTrust.

July 22, 2022

Learn more

Report

Privacy & Data Governance

CCPA benchmarking report

Download this OneTrust and IAPP CCPA benchmarking report to see how companies are approaching CCPA compliance and their level of readiness.

July 22, 2022

Learn more

Blog

Privacy & Data Governance

The California Privacy Protection Agency (CPPA) files notice of proposed rulemaking for the CPRA

The CPPA announced on July 8, 2022, that it is beginning the process to adopt regulations to implement the Consumer Privacy Rights Act of 2020 (CPRA).

Alexis Kateifides, OneTrust Senior Center of Excellence Counsel

July 11, 2022 2 min read

Learn more

Blog

Privacy & Data Governance

The California Privacy Protection Agency (CPPA) files notice of proposed rulemaking for the CPRA

The CPPA announced on July 8, 2022, that it is beginning the process to adopt regulations to implement the Consumer Privacy Rights Act of 2020 (CPRA).

Alexis Kateifides, OneTrust Senior Center of Excellence Counsel

July 11, 2022 2 min read

Learn more

White Paper

Privacy & Data Governance

How OneTrust helps with California privacy law compliance (CCPA & CPRA)

This guide to California privacy law compliance helps your organization understand the requirements under the CCPA and CPRA.

June 23, 2022

Learn more

White Paper

Privacy & Data Governance

How OneTrust helps with California privacy law compliance (CCPA & CPRA)

This guide to California privacy law compliance helps your organization understand the requirements under the CCPA and CPRA.

June 23, 2022

Learn more

Blog

Data Discovery & Security

Automating data classification and mapping to embed data context into operations

Accurately classifying data gives your organization a clearer picture of the regulatory requirements attached to it. Get Started with OneTrust Data Discovery.

February 07, 2022 7 min read

Learn more

Blog

Data Discovery & Security

Automating data classification and mapping to embed data context into operations

Accurately classifying data gives your organization a clearer picture of the regulatory requirements attached to it. Get Started with OneTrust Data Discovery.

February 07, 2022 7 min read

Learn more

Blog

Privacy Management

iOS app account deletion FAQs

In this article, we answer your most frequently asked iOS app account deletion requirement questions. Learn more about the impacts.

January 24, 2022 3 min read

Learn more

Blog

Privacy Management

iOS app account deletion FAQs

In this article, we answer your most frequently asked iOS app account deletion requirement questions. Learn more about the impacts.

January 24, 2022 3 min read

Learn more

Webinar

Privacy & Data Governance

Know your laws: Comparing CCPA & CPRA vs. GDPR

Watch this free webinar and see how the CCPA and CPRA compare with the GDPR.

January 04, 2022

Learn more

Webinar

Privacy & Data Governance

Know your laws: Comparing CCPA & CPRA vs. GDPR

Watch this free webinar and see how the CCPA and CPRA compare with the GDPR.

January 04, 2022

Learn more

eBook

Privacy & Data Governance

The ultimate guide to CCPA compliance

The Ultimate Guide to CCPA Compliance eBook highlights key compliance areas of  the CCPA that you should consider when building a privacy program.

December 01, 2021

Learn more

eBook

Privacy & Data Governance

The ultimate guide to CCPA compliance

The Ultimate Guide to CCPA Compliance eBook highlights key compliance areas of  the CCPA that you should consider when building a privacy program.

December 01, 2021

Learn more

Blog

Privacy & Data Governance

The ultimate guide to CCPA compliance

The Ultimate Guide to CCPA Compliance outlines the key areas of the law that your organization should consider. Read the blog to learn more.

September 27, 2021 10 min read

Learn more

Blog

Privacy & Data Governance

The ultimate guide to CCPA compliance

The Ultimate Guide to CCPA Compliance outlines the key areas of the law that your organization should consider. Read the blog to learn more.

September 27, 2021 10 min read

Learn more

Webinar

Privacy Management

CCPA, CPRA, and Global Privacy Control: Moving toward a more private web

Watch this webinar to learn about Global Privacy Control (GPC), how it centralizes user opt-out preferences, and streamlines compliance with CCPA and CPRA. 

September 08, 2021

Learn more

Webinar

Privacy Management

CCPA, CPRA, and Global Privacy Control: Moving toward a more private web

Watch this webinar to learn about Global Privacy Control (GPC), how it centralizes user opt-out preferences, and streamlines compliance with CCPA and CPRA. 

September 08, 2021

Learn more

Blog

Privacy & Data Governance

The CCPA metrics reporting requirement: What you need to know

As of July 1, 2021, the CCPA metrics reporting obligation took effect for certain organizations. Here's what you need to know.

August 11, 2021 3 min read

Learn more

Blog

Privacy & Data Governance

The CCPA metrics reporting requirement: What you need to know

As of July 1, 2021, the CCPA metrics reporting obligation took effect for certain organizations. Here's what you need to know.

August 11, 2021 3 min read

Learn more

Webinar

Privacy & Data Governance

Breaking update: New California Consumer Privacy Act

This webinar dives into the details of the California Consumer Privacy Act and how it will impact the companies handling their data.

July 23, 2021

Learn more

Webinar

Privacy & Data Governance

Breaking update: New California Consumer Privacy Act

This webinar dives into the details of the California Consumer Privacy Act and how it will impact the companies handling their data.

July 23, 2021

Learn more

Infographic

Privacy & Data Governance

CCPA vs. CPRA infographic

Compare California's privacy laws: CCPA vs CPRA in this downloadable infographic.

July 22, 2021

Learn more

Checklist

Privacy Management

5 step CCPA compliance checklist

Download this 5 step checklist for recommended actions to help businesses working towards CCPA compliance.

July 22, 2021

Learn more

Infographic

Privacy Management

CDPA vs CCPA: Comparing US privacy laws

Download this infographic comparing the Virginia CDPA to the California CCPA.

July 22, 2021

Learn more

Infographic

Privacy & Data Governance

CCPA vs. CPRA infographic

Compare California's privacy laws: CCPA vs CPRA in this downloadable infographic.

July 22, 2021

Learn more

Infographic

Privacy Management

CDPA vs CCPA: Comparing US privacy laws

Download this infographic comparing the Virginia CDPA to the California CCPA.

July 22, 2021

Learn more

Webinar

Privacy & Data Governance

CPRA vs CCPA: What you need to know

Join us for a webinar as our legal experts discuss the key differences between the CPRA vs the CCPA.

July 22, 2021

Learn more

Webinar

Privacy & Data Governance

CPRA vs CCPA: What you need to know

Join us for a webinar as our legal experts discuss the key differences between the CPRA vs the CCPA.

July 22, 2021

Learn more

Blog

Privacy & Data Governance

OneTrust Partners with global privacy control to help users control privacy

Today OneTrust and Global Privacy Control (GPC) announced their partnership to help users control their privacy with a new browser setting.

January 28, 2021 4 min read

Learn more

Blog

Privacy & Data Governance

OneTrust Partners with global privacy control to help users control privacy

Today OneTrust and Global Privacy Control (GPC) announced their partnership to help users control their privacy with a new browser setting.

January 28, 2021 4 min read

Learn more

Blog

Privacy & Data Governance

CCPA vs. CPRA – What has changed?

On November 4, 2020, California voters passed the California Privacy Rights Act (CPRA or CCPA 2.0), but how does it compare with the CCPA?

November 10, 2020 4 min read

Learn more

Blog

Privacy & Data Governance

CCPA vs. CPRA – What has changed?

On November 4, 2020, California voters passed the California Privacy Rights Act (CPRA or CCPA 2.0), but how does it compare with the CCPA?

November 10, 2020 4 min read

Learn more

Blog

Privacy & Data Governance

What are the differences between CCPA and GDPR and LGPD?

The data security space is heating up in 2021. Read this article to understand the key components and comparisons of CCPA, GDPR, and LGPD.

August 28, 2020 11 min read

Learn more

Blog

Privacy & Data Governance

What are the differences between CCPA and GDPR and LGPD?

The data security space is heating up in 2021. Read this article to understand the key components and comparisons of CCPA, GDPR, and LGPD.

August 28, 2020 11 min read

Learn more

Blog

Privacy & Data Governance

Keeping CCPA compliant with Facebook’s limited data use

The CCPA enforcement date of July 1 has recently passed, but there are still areas of the regulation that businesses need clarity on.

August 03, 2020 3 min read

Learn more

Blog

Privacy & Data Governance

Keeping CCPA compliant with Facebook’s limited data use

The CCPA enforcement date of July 1 has recently passed, but there are still areas of the regulation that businesses need clarity on.

August 03, 2020 3 min read

Learn more

Blog

Privacy & Data Governance

CCPA compliance for small businesses

The first step to CCPA compliance for small businesses will be to understand if the law applies to your business or not.  

June 02, 2020 3 min read

Learn more

Blog

Privacy & Data Governance

CCPA compliance for small businesses

The first step to CCPA compliance for small businesses will be to understand if the law applies to your business or not.  

June 02, 2020 3 min read

Learn more

Blog

Privacy Management

CCPA privacy policy & notice requirements

A key part of the California Consumer Privacy Act (CCPA) that went into effect on January 1, 2020 is updating your privacy policy and notice requirements.

April 22, 2020 3 min read

Learn more

Blog

Privacy Management

CCPA privacy policy & notice requirements

A key part of the California Consumer Privacy Act (CCPA) that went into effect on January 1, 2020 is updating your privacy policy and notice requirements.

April 22, 2020 3 min read

Learn more

Blog

Privacy & Data Governance

The CCPA Toll-Free Number requirement

The California Consumer Privacy Act is taking effect in January, and one requirement that still confuses many businesses is the Toll-Free Number requirement.

December 27, 2019 4 min read

Learn more

Blog

Privacy & Data Governance

The CCPA Toll-Free Number requirement

The California Consumer Privacy Act is taking effect in January, and one requirement that still confuses many businesses is the Toll-Free Number requirement.

December 27, 2019 4 min read

Learn more

Blog

GRC & Security Assurance

CCPA compliance: Your most frequent CCPA questions answered

The CCPA is only days away from taking effect, and OneTrust has all the resources you need to be CCPA ready by January 1, 2020.

December 24, 2019 24 min read

Learn more

Blog

GRC & Security Assurance

CCPA compliance: Your most frequent CCPA questions answered

The CCPA is only days away from taking effect, and OneTrust has all the resources you need to be CCPA ready by January 1, 2020.

December 24, 2019 24 min read

Learn more

Blog

Third-Party Risk

Centralizing your risk register

Companies can integrate their information across systems and data collection points to centralize their risk register and reporting efforts.

December 19, 2019 4 min read

Learn more

Blog

Third-Party Risk

Centralizing your risk register

Companies can integrate their information across systems and data collection points to centralize their risk register and reporting efforts.

December 19, 2019 4 min read

Learn more

Blog

Data Discovery & Security

OneTrust Targeted Data Discovery: Not your average data discovery tool

OneTrust offers a Targeted Data Discovery solution to help automate Data Subject Access Requests or DSAR requests.

November 26, 2019 2 min read

Learn more

Blog

Data Discovery & Security

OneTrust Targeted Data Discovery: Not your average data discovery tool

OneTrust offers a Targeted Data Discovery solution to help automate Data Subject Access Requests or DSAR requests.

November 26, 2019 2 min read

Learn more

Blog

Privacy & Data Governance

CCPA Applicability: Who will the CCPA impact?

As the CCPA goes into effect on January 1, 2020, everyone who handles personal information regarding California consumers are going to be impacted.

November 06, 2019 3 min read

Learn more

Blog

Privacy & Data Governance

CCPA Applicability: Who will the CCPA impact?

As the CCPA goes into effect on January 1, 2020, everyone who handles personal information regarding California consumers are going to be impacted.

November 06, 2019 3 min read

Learn more

Blog

Privacy & Data Governance

The Nevada Privacy Law vs. the CCPA

Similar to the CCPA, Nevada allows consumers to opt-out of the sale of “covered information” collected through a website or online service. 

September 17, 2019 7 min read

Learn more

Blog

Privacy & Data Governance

The Nevada Privacy Law vs. the CCPA

Similar to the CCPA, Nevada allows consumers to opt-out of the sale of “covered information” collected through a website or online service. 

September 17, 2019 7 min read

Learn more

Webinar

Privacy Management

CCPA identity verification

In this webinar we explore options for verifying a consumer's identity and how to fully automate this process with OneTrust.

August 13, 2019

Learn more

Webinar

Privacy Management

CCPA identity verification

In this webinar we explore options for verifying a consumer's identity and how to fully automate this process with OneTrust.

August 13, 2019

Learn more

Blog

Privacy & Data Governance

What teams should be part of your internal CCPA team

While the CCPA will impact the entire organization, but one initial consideration is who should be part of your internal CCPA team.  

July 22, 2019 5 min read

Learn more

Blog

Privacy & Data Governance

What teams should be part of your internal CCPA team

While the CCPA will impact the entire organization, but one initial consideration is who should be part of your internal CCPA team.  

July 22, 2019 5 min read

Learn more

Blog

Privacy & Data Governance

Ready to become an expert? Everything you need to know about OneTrust’s PrivacyTech Expert Certification

Find out everything you need to know about the OneTrust Expert Certification training at OneTrust PrivacyTech 2019.

May 01, 2019 3 min read

Learn more

Blog

Privacy & Data Governance

Ready to become an expert? Everything you need to know about OneTrust’s PrivacyTech Expert Certification

Find out everything you need to know about the OneTrust Expert Certification training at OneTrust PrivacyTech 2019.

May 01, 2019 3 min read

Learn more

Blog

Privacy Management

Privacy, the new global trade war: Part 1

The GDPR's extra-territorial scope is a big step in escalating the global shift towards digital protectionism and even stoking a global trade war.

February 25, 2019 6 min read

Learn more

Blog

Privacy Management

Privacy, the new global trade war: Part 1

The GDPR's extra-territorial scope is a big step in escalating the global shift towards digital protectionism and even stoking a global trade war.

February 25, 2019 6 min read

Learn more

Blog

Privacy & Data Governance

CA Attorney General holds public forums on the CCPA: what you need to know

In partnership with the Department of Justice, the California Attorney General has scheduled several public forums to get feedback and opinions on the CCPA.

February 13, 2019 3 min read

Learn more

Blog

Privacy & Data Governance

CA Attorney General holds public forums on the CCPA: what you need to know

In partnership with the Department of Justice, the California Attorney General has scheduled several public forums to get feedback and opinions on the CCPA.

February 13, 2019 3 min read

Learn more

Cookie Consent | Request Demo | OneTrust

Request a demo of OneTrust Cookie Consent and see how to block cookies in minutes with our drastically simplified cookie technology.

Learn more

CCPA Compliance | Request Demo | OneTrust

Request a demo to receive a deep dive tour of our purpose-built suite of technology solutions for operationalizing and automating CCPA requirements.

Learn more

Free CCPA App | OneTrust

Download the CCPA App by OneTrust for complete CCPA text, ability to highlight and bookmark, and more.

Learn more

CCPA Compliance | Request Demo | OneTrust

Request a demo to receive a deep dive tour of our purpose-built suite of technology solutions for operationalizing and automating CCPA requirements.

Learn more

Free CCPA App | OneTrust

Download the CCPA App by OneTrust for complete CCPA text, ability to highlight and bookmark, and more.

Learn more

Cookie Consent | Request Demo | OneTrust

Request a demo of OneTrust Cookie Consent and see how to block cookies in minutes with our drastically simplified cookie technology.

Learn more

Webinar

Privacy & Data Governance

CCPA compliance masterclass

Watch our OneTrust CCPA Masterclass Series and learn how to prepare your organization for CCPA compliance.

Learn more

Webinar

Privacy & Data Governance

CCPA compliance masterclass

Watch our OneTrust CCPA Masterclass Series and learn how to prepare your organization for CCPA compliance.

Learn more

Customer Story

Privacy & Data Governance

Match Group

Learn how Match Group found a winning formula for their global privacy program through the personalization, integration, and automation of OneTrust privacy management software.

Learn more

Customer Story

Privacy Management

Air Canada

Air Canada enhance their privacy program with OneTrust DataGuidance

Learn more

Customer Story

Privacy & Data Governance

Grant Thornton LLP

Learn how Grant Thornton LLP implemented OneTrust solutions to build a robust technology-based privacy program for their customers.

Learn more

Customer Story

Privacy & Data Governance

Privacy Program Management, Copenhagen

Learn how consulting firm Privacy Program Management Copenhagen leverages OneTrust DataGuidance Research for credible privacy information.

Learn more

Customer Story

Privacy & Data Governance

a360media

Learn how OneTrust and Red Clover Advisors partnered to streamline the a360media privacy program and help them maintain GDPR compliance.

Learn more

Customer Story

Consent & Preferences

VFS Global

Learn how visa outsourcing service agency VFS Global leverages the OneTrust Privacy and Data Governance Cloud to unify privacy across its global network.

Learn more

Customer Story

Consent & Preferences

Yum! Brands

See how Fortune 500 company Yum! Brands achieved global privacy success by leveraging the OneTrust Privacy and Data Governance Cloud.

Learn more

Customer Story

Privacy & Data Governance

Bitsight Security Ratings

For one Fortune 500 automotive aftermarket retailer, the OneTrust Vendorpedia and BitSight Security Ratings integration was the right combination to support their 2,500+ vendor landscape and a growing list of third-party risk management challenges.

Learn more

Customer Story

Privacy & Data Governance

Protiviti

Learn how Protiviti uses the OneTrust Privacy and Data Governance Cloud to support compliance with global privacy regulations.

Learn more

Customer Story

Privacy & Data Governance

GVC Group

See how GVC uses OneTrust privacy management software to maintain and manage CCPA and GDPR regulatory compliance.

Learn more

Customer Story

Privacy & Data Governance

MiTek Industries

Learn how MiTek Industries centralized their global privacy management program with the OneTrust Privacy and Data Governance Cloud.

Learn more

Customer Story

Privacy & Data Governance

MSX International

See how the InfoSec & Compliance team at MSX International leverages OneTrust as a key component of its compliance and security ecosystem. 

Learn more

Customer Story

Privacy & Data Governance

Self Esteem Brands

See how wellness organization Self Esteem Brands leverages the OneTrust solutions to support vendor risk management and assessment automation.

Learn more

Customer Story

Privacy & Data Governance

LimaCorporate

Learn why LimaCorporate chooses the OneTrust Privacy and Data Governance Cloud to support GDPR, CCPA, and HIPAA compliance for their business.

Learn more

Customer Story

Consent & Preferences

Progress Software

See how Progress Software uses OneTrust Consent and Preferences and A/B testing solutions to streamline their process and increase opt-in rates. 

Learn more

Customer Story

GRC & Security Assurance

ORTEC

See how ORTEC tackles regulatory gaps, engages the business to keep risk data current, and takes an automated approach audit management with OneTrust.

Learn more

Customer Story

Consent & Preferences

Wipro

See how a partnership betweenOneTrust and global cybersecurity leader Wipro helped an American retail chain become CCPA compliant.

Learn more

Customer Story

Privacy Management

Air Canada

Air Canada enhance their privacy program with OneTrust DataGuidance

Learn more

Customer Story

Privacy & Data Governance

ResMed

Learn how ResMed creates a healthy global privacy program and stays up to date with new regulations with OneTrust privacy management software.

Learn more

Customer Story

Consent & Preferences

MillerKnoll

See how MillerKnoll uses the OneTrust Privacy and Data Governance Cloud to make their customer-centric privacy program a competitive differentiator.

Learn more

Customer Story

Privacy & Data Governance

ClearData

Learn how ClearDATA leveraged OneTrust Data Mapping Automation and PIA & DPIA Automation for global privacy compliance efforts.

Learn more

Customer Story

Consent & Preferences

MillerKnoll

See how MillerKnoll uses the OneTrust Privacy and Data Governance Cloud to make their customer-centric privacy program a competitive differentiator.

Learn more

Customer Story

Privacy & Data Governance

Privacy Program Management, Copenhagen

Learn how consulting firm Privacy Program Management Copenhagen leverages OneTrust DataGuidance Research for credible privacy information.

Learn more

Customer Story

Privacy & Data Governance

a360media

Learn how OneTrust and Red Clover Advisors partnered to streamline the a360media privacy program and help them maintain GDPR compliance.

Learn more

Customer Story

Privacy & Data Governance

Grant Thornton LLP

Learn how Grant Thornton LLP implemented OneTrust solutions to build a robust technology-based privacy program for their customers.

Learn more

Customer Story

Consent & Preferences

VFS Global

Learn how visa outsourcing service agency VFS Global leverages the OneTrust Privacy and Data Governance Cloud to unify privacy across its global network.

Learn more

Customer Story

Consent & Preferences

Yum! Brands

See how Fortune 500 company Yum! Brands achieved global privacy success by leveraging the OneTrust Privacy and Data Governance Cloud.

Learn more

Customer Story

Privacy & Data Governance

Match Group

Learn how Match Group found a winning formula for their global privacy program through the personalization, integration, and automation of OneTrust privacy management software.

Learn more

Customer Story

Privacy & Data Governance

Bitsight Security Ratings

For one Fortune 500 automotive aftermarket retailer, the OneTrust Vendorpedia and BitSight Security Ratings integration was the right combination to support their 2,500+ vendor landscape and a growing list of third-party risk management challenges.

Learn more

Customer Story

Privacy & Data Governance

Protiviti

Learn how Protiviti uses the OneTrust Privacy and Data Governance Cloud to support compliance with global privacy regulations.

Learn more

Customer Story

Privacy & Data Governance

GVC Group

See how GVC uses OneTrust privacy management software to maintain and manage CCPA and GDPR regulatory compliance.

Learn more

Customer Story

Privacy & Data Governance

MiTek Industries

Learn how MiTek Industries centralized their global privacy management program with the OneTrust Privacy and Data Governance Cloud.

Learn more

Customer Story

Privacy & Data Governance

MSX International

See how the InfoSec & Compliance team at MSX International leverages OneTrust as a key component of its compliance and security ecosystem. 

Learn more

Customer Story

Privacy & Data Governance

Self Esteem Brands

See how wellness organization Self Esteem Brands leverages the OneTrust solutions to support vendor risk management and assessment automation.

Learn more

Customer Story

Privacy & Data Governance

ClearData

Learn how ClearDATA leveraged OneTrust Data Mapping Automation and PIA & DPIA Automation for global privacy compliance efforts.

Learn more

Customer Story

Privacy & Data Governance

LimaCorporate

Learn why LimaCorporate chooses the OneTrust Privacy and Data Governance Cloud to support GDPR, CCPA, and HIPAA compliance for their business.

Learn more

Customer Story

Consent & Preferences

Progress Software

See how Progress Software uses OneTrust Consent and Preferences and A/B testing solutions to streamline their process and increase opt-in rates. 

Learn more

Customer Story

GRC & Security Assurance

ORTEC

See how ORTEC tackles regulatory gaps, engages the business to keep risk data current, and takes an automated approach audit management with OneTrust.

Learn more

Customer Story

Consent & Preferences

Wipro

See how a partnership betweenOneTrust and global cybersecurity leader Wipro helped an American retail chain become CCPA compliant.

Learn more

Customer Story

Privacy & Data Governance

ResMed

Learn how ResMed creates a healthy global privacy program and stays up to date with new regulations with OneTrust privacy management software.

Learn more

Consentimiento de cookies | Solicitar demostración | OneTrust

Solicita una demostración del módulo Consentimiento de cookies de OneTrust y aprende cómo bloquear las cookies en cuestión de minutos con nuestra tecnología de cookies fácil de usar.

Learn more

Consentement aux cookies | Demander une démo | OneTrust

Demandez une démonstration de la solution de consentement aux cookies OneTrust et découvrez comment bloquer les cookies en quelques minutes grâce à notre technologie ultra simplifiée.

Learn more

Cookie Consent | Demo anfordern | OneTrust

Fordern Sie eine Demo von OneTrust Cookie Consent an und erfahren Sie, wie Sie mit unserer stark vereinfachten Cookie-Technologie Cookies in wenigen Minuten blockieren können.

Learn more

Consentimento de Cookies | Solicitar Demonstração | OneTrust

Solicite uma demonstração da solução de Consentimento de Cookies OneTrust e veja como bloquear cookies em poucos minutos com nossa tecnologia extremamente simples.

Learn more

Consenso all'uso dei cookie | Richiedi una demo | OneTrust

Richiedi una demo del Consenso all'uso dei cookie OneTrust e scopri come bloccare i cookie in pochi minuti con la nostra tecnologia estremamente semplificata.

Learn more

Consenso all'uso dei cookie | Richiedi una demo | OneTrust

Richiedi una demo del Consenso all'uso dei cookie OneTrust e scopri come bloccare i cookie in pochi minuti con la nostra tecnologia estremamente semplificata.

Learn more

Cookie Consent | Demo anfordern | OneTrust

Fordern Sie eine Demo von OneTrust Cookie Consent an und erfahren Sie, wie Sie mit unserer stark vereinfachten Cookie-Technologie Cookies in wenigen Minuten blockieren können.

Learn more

Consentimento de Cookies | Solicitar Demonstração | OneTrust

Solicite uma demonstração da solução de Consentimento de Cookies OneTrust e veja como bloquear cookies em poucos minutos com nossa tecnologia extremamente simples.

Learn more

Témoignage client

Privacy & Data Governance

Protiviti

Découvrez comment Protiviti utilise le cloud Privacy and Data Governance de OneTrust pour accompagner la conformité aux réglementations mondiales sur la protection de la vie privée.

Learn more

Témoignage client

Privacy & Data Governance

Protiviti

Découvrez comment Protiviti utilise le cloud Privacy and Data Governance de OneTrust pour accompagner la conformité aux réglementations mondiales sur la protection de la vie privée.

Learn more

Kundengeschichte

Datenschutzmanagement

Air Canada

Air Canada erweitert sein Datenschutzprogramm mit OneTrust DataGuidance

Learn more

Kundengeschichte

Datenschutzmanagement

Air Canada

Air Canada erweitert sein Datenschutzprogramm mit OneTrust DataGuidance

Learn more

Customer Story

Privacy & Data Governance

Avaloq

Learn how Avaloq uses OneTrust DataGuidance Research, Cookie Consent, and Data Mapping Automation to gain a competitive advantage in the FinTech industry.

Learn more