Take control of CCPA privacy compliance with TrustArc technology and services.
The California Consumer Privacy Act (CCPA) broadly expands the rights of consumers and requires businesses within scope to be significantly more transparent about how they collect, use, and disclose personal information.
Build a comprehensive compliance plan, implement privacy controls, and manage ongoing compliance with the TrustArc Platform and Consulting Services.
CCPA Privacy Platform
The first step is to assess California Consumer Privacy Act (CCPA) compliance status, identify gaps, and develop an action plan to manage ongoing compliance.
- CCPA Privacy Assessment
Take advantage of the work done for GDPR compliance. Identify opportunities for interoperability, enhancements to controls, and a customized plan for implementation.
- GDPR to CCPA Privacy Assessment
See all Assessment options.
CCPA Program Development
After identifying risks and building a remediation plan, the next step is to design, build and implement processes and tools to address compliance requirements. TrustArc offers CCPA privacy program development services for the following areas:
- Data Inventory Program
- Risk Assessment Program
- Transparency Program
- Use, Retention and Disposal
- Third Parties and Onward Transfer
- Choice and Consent
- Children’s Protection
- Access and Individual Rights
- Incident Response
- Policies and Standards
See all Program Development options.
The CCPA is effective January 1, 2020 – and the 12-month “look back” requirement means companies should maintain an up-to-date data inventory and data flow maps now. Are you ready?
What is the California Consumer Privacy Act?
The CCPA is set to be the toughest privacy law in the United States. The act broadly expands the rights of consumers and requires businesses within scope to be significantly more transparent about how they collect, use, and disclose personal information. The CCPA was signed on June 28, 2018, is effective January 1, 2020, and enforcement is slated to begin no later than July 1, 2020. It has many similarities to the GDPR, from its extraterritorial reach to its expansive rights for individuals, and will impact tens of thousands of businesses worldwide that have customers or employees located in California.