How to Prepare for the CCPA: Know Your Data
Matthew L. Miller, Esq. and Maureen O’Neill, Esq.
In a highly globalized market where big data proliferation has run unchecked, organizations are increasingly vulnerable to mismanagement of their information assets. In response, data privacy regulation has been on the rise over the last few years. The law with the most impact to date has been the European Union’s General Data Protection Regulation (GDPR). The GDPR sent organizations around the globe into a panic as they attempted to bring their policies into compliance before the law went into effect. Even now, well after its effective date, many organizations are still struggling to comply with the GDPR, placing them at risk of significant fines and penalties— up to 4% of global revenue for the most serious violations.
Now, organizations have another reason to be concerned. The latest data privacy compliance challenge comes not from Europe, but from the United States—in the California Consumer Privacy Act of 2018 (CCPA), the broadest law of its kind in the U.S. Inspired by the GDPR, and in response to a number of recent incidents that “highlighted that our personal information may be vulnerable to misuse when shared on the Internet,” the CCPA aims to give consumers more control over their personal information so that they can avoid the misuse of their data.
With the January 1, 2020, effective date of the CCPA approaching fast, organizations need to act now to prepare for compliance. As the law’s requirements make clear, it all starts with knowing your data.