Skip to main content

On-demand webinar coming soon...

CDPA Compliance

Operationalize compliance for the CDPA

Protect your customers’ personal data and simplify privacy governance with our CDPA compliance solution. 

CDPA Compliance

One platform for CDPA compliance

Automate CDPA compliance so you can focus more on your privacy program and less on administrative tasks. 

Minimize risk by assessing your CDPA readiness and receiving remediation guidance. Opt-in to see how your program stacks up against 300+ other organizations. 

Accelerate CDPA compliance by automating consumer requests fulfillment within the 45-day timeline, enabling opt-out requests across your systems, and centralizing privacy disclosure distribution. 

Ensure data minimization and purpose limitation with privacy impact assessments (PIAs) and privacy by design (PbD) assessments. Map data flows to track key CDPA data elements and take a proactive approach to incident management should a breach occur. 

Stay informed on the latest amendments with in-platform templates, workflows, and suggestions driven by the world’s largest source of privacy research. 

July 30, 2024

The ultimate consent strategy for maximizing customer opt-ins in 2024

Discover the ultimate consent strategy for 2024! Join our webinar to maximize customer opt-ins, optimize user experience, and maintain compliance.


The Virginia Consumer Data Protection Act (CDPA) is a privacy law that increases the protection of consumers’ sensitive data and expands consumer privacy rights for Virginia residents. Sharing commonalities with the California Consumer Privacy Act (CCPA) and the General Data Protection Regulation (GDPR), CDPA establishes new definitions for geolocation data, profiling, targeted advertising, and the scale of personal data requires new data privacy procedures for organizations. 

The law applies to anybody who conducts business in Virginia or sells to Virginia residents. It also applies to organizations that process the personal data of 100,000 or more individuals in one calendar year, or controls 250,000 consumers private information and derives 50% or more of its gross revenue from the sale of personal data. 

Applicable businesses must distribute well-crafted privacy policies, enable and fulfill timely opt-out requests, allow users to opt-in to data processing activities, and make assessments on their protection of sensitive data. OneTrust provides one centralized solution that streamlines CDPA compliance. 

Ready to get started?

Request a free demo today to see how OneTrust can guide your trust transformation journey.