Last month, Eric Edelstein, iWorkGlobal’s Chief Technology Officer was invited to speak at the North Bay Business Journal’s annual CyberSecurity Conference. The presentation was centered on Data Privacy and the California Consumer Privacy Act (CCPA) and the slides can be viewed here. This topic is timely, as the CCPA goes into effect on January 1, 2020.
Eric covered the circumstances that led to the enactment of the CCPA, who and what is protected by the CCPA, the impact of the CCPA and steps an organization can take to prepare for the CCPA.
What were the 3 top takeaways for attendees?
- Data privacy is not “an IT thing”. Data privacy should be inherent in and inseparable from all aspects of how an organization delivers service.
- It’s very important to determine whether your company is or is not required to comply with the CCPA. There may be benefit to complying, even if not required.
- If your organization decides to comply, it may be worthwhile getting outside help in developing a formalized data privacy compliance program.
What is the future outlook for data privacy regulation in the U.S.?
Several states have privacy regulation coming down the pike. As a result, organizations might find that it is most efficient to develop a single set of procedures for data privacy that covers all the states in which they provide service.
In that case, organizations will need to ensure their data privacy practices cover the most restrictive regulations to adhere to any future state specific regulations.
For more information about the CCPA, check out our earlier blogs.