Are You Privacy Prepared?
Never miss a thing.
Sign up to receive our insights newsletter.
The California Consumer Privacy Act (CCPA) went into effect January 1, 2020. The law protects data privacy and helps individuals understand what data is collected and how it is sold or disclosed. The CCPA will be enforced beginning July 1, 2020, following a six-month grace period for compliance.
The California regulation applies to organizations that:
- Have annual gross revenues in excess of $25 million
- Annually buy, sell, receive or share for commercial purposes, the personal information of 50,000 or more consumers, households or devices
- Derive 50 percent or more of its annual revenues from selling consumers’ personal information
- Conduct business in California or collect consumers’ (California residents) personal information
PENALTIES: Under the CCPA, the California Attorney General can bring civil actions for injunctions or civil penalties of $2,500 per violation under the statute and up to $7,500 for any intentional violation. A business is in violation of the statute if it fails to address an alleged violation within 30 days after being notified of alleged noncompliance.
Cybersecurity Regulation: Services
Weaver’s advisory professionals help entities throughout the country meet rigorous cybersecurity requirements. We assess systems and processes against a variety of technical and regulatory requirements, including, but not limited to, Sarbanes-Oxley, FDICIA, PCI, ISO 27001/2 and NIST 800-53. We are well-versed in the standards and control frameworks used by leading organizations to manage compliance with these regulations and to consult on issues from a security or privacy perspective.
For more information, contact us.
© 2020