New York City, New York Nov 24, 2020 (Issuewire.com) - Californians for Consumer Privacy Group introduced a new Data Privacy Law known as the California Privacy Rights Act of 2020 (CPRA). On November 3rd, 2020, California Privacy Rights Act (CPRA) was qualified and approved by the Californian voters as a new Data Privacy Law which is an elaborate and modified version of the California Consumer Privacy Act of 2018 (CCPA). Within just a few months of CCPA coming into effect on January 1, 2020, and the enforcement date of July 1, 2020, we already have a new modified version of the regulation with substantial updates.
The good news is that for organizations that are ready for CCPA in terms of Data Governance & Management will only require a few adjustments in their already operational policies, procedures, and control strategies. CPRA 2020, is said to come into effect on January 1, 2023. The two-year window provided will ensure systematic enforcement of the Act, while also prevent an organization from postponing its readiness efforts. CPRA Act will be the first of its kind law in the United States governed by a five-member panel having administrative power, authority, and jurisdiction to implement and enforce the CCPA.
The new CPRA Regulation sets new obligations for organizations processing sensitive personal information. CPRA strictly defines “personal information” as “sensitive personal information” which includes government-issued identifiers like the Social Security Numbers, Driver’s License Numbers, Passport Numbers, Account Credentials, Financial Information, Geolocation, Race or Ethnic Origin, Religious beliefs, Genetic Data, Biometric Information Certain types of messages including emails and text, and other types of information. Similar to GDPR, CPRA expands many Consumer rights under the CCPA and also extends the moratorium related to employee data until January 1, 2023.
With CPRA getting a green signal, most organizations that are still grappling with the nuances of the CCPA will have to now consider the new amendments in the policies, procedures, and processes as outlined by the CPRA. Preparing for the enforcement of the law will require the same level of readiness and basic foundation as required for CCPA. While most organizations have learned and understood with GDPR and CCPA that preparing for data privacy laws on an operational level takes significant time and effort, waiting until the last minute is not an option. This is particularly so since the CPRA provisions apply to any personal data collected on or after January 1, 2022, one year before its enforcement date. Businesses are required to understand and continuously update their data inventories and data flows as per the requirements. They will need to align their people, processes, and technologies with the requirements of the applicable Data Privacy law and also have in place an effective governance plan to maintain the readiness and compliance status.
About VISTA InfoSec
VISTA InfoSec is a reputed global Information Security Consulting firm that extends its Consultation Services to align with the latest requirements of the CPRA Act. Organizations looking to achieve CCPA Compliance and prepare for the latest version of CPRA can avail of our professional Consulting Services. We have been in the industry for almost two decades and have served several multinational firms in their efforts to achieving Compliance. We have helped numerous clients prepare for data management and governance for Compliance Regulations like GDPR, CCPA, and other Data Privacy Law. Our team of industry experts can help you secure your IT Infrastructure and ensure the implementation of industry best practices for achieving Compliance. With a process that begins with an understanding of your data and mapping the systems, processes, and flows around it, we can streamline your entire process of Compliance. If you have any queries on how to prepare for CPRA, you can always get in touch with our professional Consultants. (https://www.vistainfosec.com/)
Media Contact
VISTA InfoSec info@vistainfosec.com +1-415-513-5261 347 Fifth Ave, Suite 1402-526 https://www.vistainfosec.com/
