This week, Virginia became the next state after California to officially pass a comprehensive privacy law. The Consumer Data Protection Act (CDPA) sets out an increased protection for consumer data and establishes definitions regarding precise geolocation data, targeted advertising, and the sale of personal data and would grant data subjects with a range of rights including access and opt-out rights.
Sign up for the webinar: Virginia CDPA Lands: What You Need to Know
The CDPA will provide consumers with a range of new rights including the right to opt out of the processing of personal data for sale or targeted advertising, the right to deletion, the right to amend inaccuracies, and the right to data portability.
With the CDPA‘s passing, organizations will be subject to vendor management obligations as well as data security and data protection assessment requirements. The CDPA applies to organizations that conduct their business in Virginia, or that produce products or services that are targeted to residents of Virginia and that meet one or more of the following requirements:
Register now: Virginia CDPA Lands: What You Need to Know
OneTrust offers multiple ways to support organizations affected by the CDPA’s passing. A few of the ways we can help your privacy program navigate these changes include:
Following Governor Northam’s signature, the CDPA will come into effect January 1, 2023, so organizations have time to prepare and update their compliance programs. For more information on how OneTrust can help you comply with the CDPA , request a demo, and register for our OneTrust DataGuidance webinar for an expert panel from Woods Rogers for a reactionary webinar looking at the newly introduced CDPA. In this webinar we will discuss first impressions of the Act, the benefits and challenges it may present, and a potential timeline and future predictions for the Act.