On January 1, 2020, the California Consumer Privacy Act (CCPA) took effect, giving covered businesses six months to become compliant. Fast forward two years and the California Privacy Rights Act’s (CPRA) effective date is now on the horizon. The CPRA’s requirements will apply to personal information that has been collected since January 1, 2022, meaning that organizations that fall under the CCPA and CPRA’s scope will need to take some key next steps to bring their CCPA compliance programs in line with the CPRA’s new requirements.
The CPRA amends and expands several requirements outlined by the CCPA and introduces new rights for consumers and employees as well as establishing an independent enforcement agency, the California Privacy Protection Agency (CPPA). The CPRA includes an expanded scope to include employee data, a new category for sensitive personal information (SPI), and regular risk assessment requirements.
Download this eBook to learn more about the next steps you need to take to go from CCPA to CPRA compliance.
Learn more about:
Follow OneTrust on LinkedIn, Twitter, or YouTube for the latest on the next steps from CCPA to CPRA.
Prepare your business for EU AI Act and other AI regulations with this expert webinar. We explore the Act's key points and requirements, building an AI compliance program, and staying ahead of the rapidly changing AI regulatory landscape.
Join our webinar and learn how to create an effective, privacy-focused third-party risk management (TPRM) program that streamlines recordkeeping and reduces your risk exposure.
How can you build a privacy-focused TPRM program? In this webinar, we discuss best practices for privacy compliance when working with third parties, from onboarding to offboarding.