What is the California Privacy Rights Act?
The California Privacy Rights Act was designed to protect consumer privacy rights. It applies to individual residents of the state of California, but it does not protect non-residents, businesses, or other organizations.
What Does the CPRA do?
Who must comply with the CPRA?
There are certain organizations that must comply with the CPRA.
Organizations where 50% or more of their business revenue is from selling or sharing consumer data
Organizations that buy, sell, or share information on 100,000 or more customers on an annual basis
Organizations with $25 million or more in annual gross revenue
What is Required of Businesses?
The California Privacy Rights Act (CPRA) does more than just protect consumer rights, it also requires businesses to:
Here are some myths to look out for:
- -
Have reasonable procedures in place to respond to consumer requests
- -
Provide clear and conspicuous notice of their data practices
- -
Provide enhanced security measures for data
- -
Give consumers the ability to file complaints with the Attorney General of California if their rights are violated
Learn about your CPRA requirements with EasyLlama training
Helping over 8,000+ organizations create a safer, more inclusive company culture.
Any organization that gathers personal data from California residents can benefit this course. The purpose is to educate employees to understand the regulations that govern how data is gathered, utilized, and shared in order to better advise them in protecting consumer data. The course covers: