Resource Center / Infographics / Avoiding the pitfalls of CCPA noncompliance
Avoiding the pitfalls of CCPA noncompliance
This resource assists with making sure your organization avoids the pitfalls of CCPA noncompliance.
Published: September 2020
This resource assists with making sure your organization avoids the pitfalls of CCPA noncompliance. Follow the path provided here to make sure your organization is ready.
The IAPP Resource Center additionally hosts a CCPA and CPRA topic page, which regularly updates with the latest relevant content.
Avoiding the pitfalls of CCPA noncompliance
Employee Training
Have you informed customer-facing employees about CCPA requirements and how to direct consumers to exercise their rights?
Security Procedures
Have you implemented reasonable security practices to protect consumers’ personal information and avoid a breach?
Consumer Requests
Have you created processes to verify and enable consumer requests for access, deletion and opt out of sales, including adding a “Do Not Sell My Personal Information” link and opt-in consent for those under 16 (where needed)?
CCPA Applicability
Have you determined how the CCPA applies to your organization (whether you are a covered business, a service provider or third party)?
Incentives
Do you have a strategy for disclosing any financial incentives you offer for the collection, sale or deletion of personal information?
Updated Privacy Policy
Are your privacy policies and other disclosures updated to provide consumers the information required by the CCPA at the appropriate time?
Updated Vendor Contracts
Are your vendor or customer contracts updated to comply with the CCPA and limit your organization’s liability?
Data Mapping
Do you understand what personal information your organization is processing, who has access to it, whether it’s “sold”, and with which third parties it is shared?