Sponsored by ActiveNav, KnowBe4, Micro Focus, PerimeterX, and Progress MOVEit
Published December 2021
Executive Summary
With the unprecedented ability of organizations to digitally collect, process, harness and sell personal data on people across the world—much of it without their knowledge or consent—regulators are taking an increasingly activist role to safeguard personal data. Europe has a harmonized data protection framework that applies to all member states—the General Data Protection Regulation (GDPR)—but there is no equivalent federal approach in the United States. Instead, state-level approaches to data privacy and data protection are emerging across the union, with California one of several states at the forefront of this movement.
This report looks at current compliance with the original California Consumer Privacy Act (CCPA) and how organizations are approaching compliance for the California Privacy Rights Act (CPRA), the updated and extended privacy legislation covering data on California residents.