Skip to Main Content
Select regional store:
Learn for less: Save 10% on high-quality foundation and auditor training. Find out more
The California Privacy Rights Act (CPRA) – An implementation and compliance guide

The California Privacy Rights Act (CPRA) – An implementation and compliance guide

SKU: 5678
Authors: Preston Bukaty
Publishers: IT Governance Publishing
Format: PDF
ISBN13: 9781787782877
Pages: 129
Published: 15 Apr 2021
Availability: Now available
Format: ePub
ISBN13: 9781787782884
Pages: 129
Published: 15 Apr 2021
Availability: Now available

Achieve CPRA compliance with our implementation guide, which:

  • Provides a comprehensive understanding of the legislation by explaining key terms
  • Explains how your business can implement strategies to comply with the CPRA
  • Discusses potential developments of the CPRA to further aid compliance
Price: $44.99

The CCPA (California Consumer Privacy Act) is a data privacy law that took effect on January 1, 2020. It applies to businesses that collect California residents’ personal information, and its privacy requirements are similar to those of the EU’s GDPR (General Data Protection Regulation).

On May 4, 2020, Californians for Consumer Privacy (an advocacy group founded by Alistair MacTaggart) announced that it had collected more than 900,000 signatures to qualify the CPRA (California Privacy Rights Act) for the November 2020 ballot. Also known as ‘CCPA 2.0’, the CPRA enhances privacy protections established by the CCPA and builds on consumer rights.

The CPRA effectively replaces the CCPA and will bolster privacy protections for California consumers when it takes effect in 2023. While many elements of the two laws are similar, there are some striking differences that could impact CPRA implementation plans, including:

  • Limiting deletion rights that apply to unstructured data
  • A new right to data minimization with retention requirements related to personal data
  • New definitions and obligations related to cross-context behavioral advertising
  • Amending breach liability to include an email address in combination with a password or security question
  • Establishing a new regulatory enforcement body: the California Privacy Protection Agency

Organizations that fail to comply with the CPRA’s requirements will be subject to civil penalties of up to $7,500 and a civil suit that gives every affected consumer the right to seek between $100 and $750 in damages per incident, or actual damages if higher.

The law is complex and requires careful reading to understand the actual requirements for organizations – The California Privacy Rights Act (CPRA) – An implementation and compliance guide is here to help.

Ensure your business is CPRA compliant with essential guidance

This book is your ideal resource for understanding the CPRA and how you can implement a strategy to ensure your organization complies with the legislation.

It will give you a comprehensive understanding of the legislation by providing definitions of key terms, explanations of the security requirements, details of the breach notification procedure, and covering the penalties for non-compliance.

Contents include:

  • Introduction
  • Chapter 1: CPRA jurisdiction – territorial
  • Chapter 2: CPRA jurisdiction – material
  • Chapter 3: The CPRA – key definitions
  • Chapter 4: Roles in the CPRA: Businesses, business purpose, and service provider
  • Chapter 5: Rights of consumers and obligations of the business
  • Chapter 6: Security requirements
  • Chapter 7: Penalties
  • Chapter 8: Breach notifications
  • Chapter 9: Other related laws – maintaining customer records
  • Chapter 10: The CPRA

The California Privacy Rights Act (CPRA) – An implementation and compliance guide is essential reading for anyone with business interests in the state of California. Not only does it serve as an introduction to the legislation, it also discusses the challenges a business may face when trying to achieve CPRA compliance. It gives you the confidence to begin your CPRA compliance journey, while highlighting the potential ongoing developments of the CPRA.

Buy this book and start implementing your CPRA compliance strategy today!

About the author

Preston Bukaty is an attorney and consultant. He specializes in data privacy GRC projects, from data inventory audits to gap analyses, contract management, and remediation planning. His compliance background and experience operationalizing compliance in a variety of industries give him a strong understanding of the legal issues presented by international regulatory frameworks. Having conducted more than 3,000 data mapping audits, he also understands the practical realities of project management in operationalizing compliance initiatives.

Preston’s legal experience and enthusiasm for technology make him uniquely suited to understanding the business impact of privacy regulations such as the GDPR and the CPRA. He has advised more than 250 organizations engaged in businesses as varied as SaaS platforms, mobile geolocation applications, GNSS/telematics tools, financial institutions, fleet management software, architectural/engineering design systems, and web hosting.

Customer reviews

This website uses cookies. View our cookie policy