If your organization processes the personal data of California residents, you may need to comply with the CPRA (California Privacy Rights Act).
The original form of the law – the CCPA (California Consumer Privacy Act) – took effect on January 1, 2020; enhanced obligations as a result of the CPRA apply starting January 1, 2023. The law applies to any entity that:
- Does business in the state of California
- Collects residents’ personal information or sensitive personal information
- Fulfils certain criteria
Learn more about the CPRA and whether it applies to you
Understand the new data privacy law with our free green paper.
Learn the basics of the CPRA, how expertise in the EU’s GDPR (General Data Protection Regulation) can help your understanding of the Act, and the key aspects your organization may want to consider when processing Californians’ personal information.
CPRA compliance consulting
Our data protection and information security experts have everything you need to ensure your organization complies with the CPRA.
Our CPRA solutions can help you:
- Obtain board-level support and establish accountability
- Identify your CPRA compliance gaps by conducting a detailed gap analysis
- Create a personal information inventory and map data flows
- Develop operational policies, procedures, and processes
- Implement processes and technical measures to secure personal information
- Ensure employees are trained and competent
- Monitor and audit your CPRA compliance
Contact us today for a bespoke CPRA consulting quote
Other CPRA and CCPA compliance solutions
If you need CPRA compliance help but don’t require a full consultancy service from our CCPA experts, you might be interested in the following products and services:
CCPA Gap Analysis
This service assesses your organization’s level of compliance with the CCPA and helps identify and prioritize the work areas that your organization must address to be compliant.
You will be assigned a CCPA consultant who will conduct an on-site or remote review of your privacy management and data protection practices.
Data Flow Mapping Tool
The Data Flow Mapping Tool simplifies the process of creating data flow maps, giving you a thorough understanding of the personal data your organization processes and why, where it is held, and how it is transferred.
The tool is a Cloud-based application, licensed for up to five users and accessible via any compatible browser.
The CPRA shares many requirements with the EU’s GDPR, and many processes designed for GDPR compliance are applicable to the CPRA. Our GDPR Toolkit contains more than 80 document templates – including policies, procedures, and checklists – designed to aid GDPR compliance, which you can use to streamline your CPRA compliance program.
ISO 27001 implementation
Implementing an ISMS (information security management system) that conforms to the global best practice set out in the international standard ISO 27001 will help protect your data and minimize your risk of a data breach. We offer a wide range of solutions to help you, including free guides and books, training courses, documentation templates, software, and consultancy.
Delivered online by an experienced privacy consultant, our one-day CPRA Foundation training course will give you a clear understanding of the main elements of the CPRA.
It is suitable for anyone involved in information management, data protection compliance, or data privacy compliance, or as part of implementation programs for organizations located or doing business in the state of California.
We're here to help
Contact us now to find out how we can help you improve your CPRA compliance
Speak to an expert