Press Release

OneTrust Commits to Integrating California’s New Privacy Law

OneTrust solutions will support businesses to comply with the California Consumer Privacy Act of 2018

July 02, 2018

OneTrust, the global leader in privacy management with 1,500 customers, including 200 of the Global 2,000, today announced it is integrating the new California Consumer Privacy Act of 2018 (CCPA) into the OneTrust Privacy Management and Marketing Compliance suite. Many businesses that collect, process or sell the personal data of California residents are subject to the new act, and OneTrust will build assessments, templates and processes into the platform to help companies comply with the CCPA.

Register for the webinar: Breaking Update: New California Consumer Privacy Act on July 3 and July 5, 2018

The CCPA issues several new rights to California residents (“consumers”):

  • The right to request information gives consumers the right to know the sources and categories of personal information a business collects, the business purpose for collecting or selling personal information, the third parties that the business shares this information with, and the specific pieces of personal information it has on a consumer. Section 1798.100 (a), (c), (d); Section 1798.115 (a)
  • The right of deletion gives consumers the right to request the deletion of their personal data. Section 1798.105
  • The right to ‘opt-out’ gives consumers the option to ask businesses not to sell their personal data and opt out of these purposes. Section 1798.120 (a)

Many of OneTrust’s solutions will support business’s efforts to prepare for and comply with the CCPA, which goes into effect on January 1, 2020.

  • OneTrust Assessment Automation and Data Mapping can help businesses understand where personal data exists and across the business. Data Mapping exercises are key to exercising consumer rights to access, deletion and disclosure. Sections 1798.100 (a), (c), (d), 1798.105, 1798.115 (a)
  • OneTrust Data Subject Rights Management Portal can automate the intake, processing and completion of the various new rights under the CCPA. Sections 1798.100 (a), (c), (d), 1798.105
  • OneTrust Vendor Management facilitates the management of vendors for compliance purposes to provide the categories of personal data processed or sold. Section 1798.115 (a)
  • For the right to opt-out, the OneTrust Universal Consent Management module tracks consent provided by the consumer. OneTrust provides a consumer interface to give the ability to opt-out of the sale of their personal data using the “Do Not Sell My Personal Information” link to the OneTrust Preference Center. Section 1798.120 (a)

“The California Consumer Privacy Act is a significant milestone in how the US is reacting to consumer driven demands for online privacy,” said Kabir Barday, OneTrust CEO and Fellow of Information Privacy (FIP). “The CCPA gives Californians more control over their personal data, which can create tremendous opportunities and challenges for businesses globally to deliver on these expectations. Although we expect the requirements to continue to evolve between now and 2020 when the law goes into force, OneTrust will continue to innovative our product in parallel to help businesses ease this burden and become compliant with the CCPA.”

OneTrust solutions help businesses operationalize their privacy programs for the CCPA, GDPR and other global privacy laws with the most comprehensive technology backed by deep privacy research, a globally available services team and the large PrivacyConnect user community.

For additional information, or to request a live OneTrust Privacy Management Software demo, visit or email



About OneTrust

OneTrust is the global leader in privacy management and marketing compliance software. More than 1,500 customers, including 200 of the Global 2,000, use OneTrust to comply with data privacy regulations across sectors and jurisdictions, including the EU GDPR, ePrivacy (Cookie Law) and California Consumer Privacy Act. An additional 7,000 organizations use OneTrust’s technology through a partnership with the International Association of Privacy Professionals (IAPP), the world’s largest global information privacy community.

The software, available in 50+ languages, is backed by over 16 awarded patents and can be deployed in an EU cloud or on-premise. The comprehensive platform is based on a combination of intelligent scanning, regulator guidance-based questionnaires, automated workflows and developer plugins used together to automatically generate the record keeping required for an organization to demonstrate compliance to regulators and auditors. The platform is enriched with content from hundreds of templates based on the world-class privacy research conducted by our 100+ in-house certified privacy professionals.

OneTrust helps organizations implement GDPR requirements, including Data Protection by Design (PbD), Data Protection Impact Assessments (PIA/DPIA), Vendor Risk Management, Incident and Breach Management, Records of Processing (Data Mapping), Universal Consent and Preference Management, ePrivacy Cookie Consent, Data Subject Access Rights, Portability and Right to Be Forgotten.

PrivacyConnect, OneTrust’s global user community, hosts in-person workshops in over 40 international cities, and is attended by thousands of privacy professionals to share best practices.

OneTrust is co-headquartered in Atlanta, GA and in London, UK, with additional offices in Munich, Bangalore and Hong Kong. The fast-growing team of privacy and technology experts surpasses 400 employees worldwide.

You may also like


Consent & Preferences

Global Privacy Control: CCPA enforcement of GPC opt-out signals webinar

Watch this on-demand webinar to gain an overview of what Global Privacy Control (GPC) is, the benefits of the signal, and how it works.

October 30, 2022

Learn more


Privacy Management

Employee vs. consumer rights: Same concept, different reality

Join this webinar to learn about the rights request fulfillment complexities introduced by the end of the employee exclusion in the CPRA.

August 25, 2022

Learn more

White Paper

Privacy & Data Governance

How OneTrust helps with California privacy law compliance (CCPA & CPRA)

This guide to California privacy law compliance helps your organization understand the requirements under the CCPA and CPRA.

June 23, 2022

Learn more