California Consumer Privacy Act signals larger movement towards increased data protection

This fall, Californians will vote on the California Consumer Privacy Act. The Act would give California residents new consumer privacy rights, allowing them more control over their personal information and how it is used. Supporters believe that the bill already has enough signatures for statewide approval.


  • The Act applies to businesses that earn $50 million or more a year in revenue
  • It also applies to organizations that sell $100,000 or more consumer records each year
  • It applies to those that derive at least 50% of their annual revenue by selling personal information

Violating the Act would result in fines of up to $7,500 per transgression.

Prepare your organization for increasing privacy regulation

The California Consumer Privacy Act reflects wider concerns about data protection and privacy around the world and has been compared to the EU’s General Data Protection Regulation (GDPR).

The GDPR, which came into effect on May 25, 2018, gives EU residents more control over how their personal data is collected and processed and places a range of new obligations and responsibilities on organizations to be more accountable for data privacy and protection.

All organizations in the EU that process personal data, and any non-EU organizations that offer goods and services to, or monitor the behavior of, EU residents must comply.

As the GDPR compliance deadline has passed, it is vital that organizations start their compliance journey, if they have not already done so.

IT Governance has the expertise to help you achieve GDPR compliance

IT Governance USA’s Certified EU General Data Protection Regulation (GDPR) Training Courses can help your organization comply with the GDPR. Learn from experts how to meet the Regulation’s requirements and gain a practical understanding of the tools and methods for implementing and managing an effective compliance framework.