Top 5 Operational Impacts of CaCPA

Editor's Note:

For more information, tools, guidance and links to texts of EU data protection laws, see the IAPP’s California Consumer Privacy Act page.

The California Consumer Privacy Act of 2018 was conceived and born in record time — two days — resulting in a comprehensive consumer privacy law that occasionally suffers from redundancy, drafting errors, and lack of clarity. This five-part series is intended to help privacy professionals make operational sense of the law in its current form, understanding that the California legislature has time before the law takes effect in January 2020 to clarify and amend the statute.

Part 1: Determining if you’re a business collecting or selling consumers’ personal information
By Rita Heimes, CIPP/E, CIPP/US, CIPM

Part 2: Transparency and notice obligations
By Lee Matheson, CIPP/A, CIPP/E, CIPP/US, CIPM

Part 3: Responding to consumers’ personal information access requests
By Rita Heimes, CIPP/E, CIPP/US, CIPM

Part 4: Rights of erasure, objection to sale, and non-discrimination
By Müge Fazlioglu, CIPP/E, CIPP/US

Part 5: Penalties and enforcement mechanisms
By Nicholas Schmidt

Tags: