CCPA - Organization must report a data breach within 72 hours!

CCPA - Organization must report a data breach within 72 hours!

John McGillin John McGillin

John McGillin

Cyber Security doesnt have a finish line, its a journey.

发布日期: 2020年7月15日
+ 关注

California's new AB 375 privacy law is not as bad as GDPR, but the details are still in flux. CCPA does not have some of GDPR's most scary requirements like the very short 72-hour window in which an organization must report a data breach but in other areas, it goes even further than GDPR. So, how do you get and stay compliant? CSO Online has a good executive summary.

What is the CCPA?

  • AB 375 allows any California consumer to demand to see all the information a company has saved on them
  • Also, a full list of all the third parties that data is shared with.
  • California law allows consumers to sue companies if the privacy guidelines are violated, even if there is no breach

Which companies does the CCPA affect?

All companies that serve California residents;

  1. Have at least $25 million in annual revenue must comply with the law.
  2. In addition, companies of any size that have personal data on at least 50,000 people
  3. Collection on more than half of their revenues from the sale of personal data
 Companies don't have to be based in California or have a physical presence there to fall under the law. They don't even have to be based in the United States.
No alt text provided for this image


An amendment made in April exempts “insurance institutions, agents, and support organizations” as they are already subject to similar regulations under California’s Insurance Information and Privacy Protection Act (IIPPA).

When does my company need to comply with the CCPA?

The law went into effect on January 1, 2020, but enforcement began on July 1.

What happens if my company is not in compliance with the CCPA?

  • Companies have 30 days to comply with the law once regulators notify them of a violation
  • If the issue isn't resolved, there's a fine of up to $7,500 per record.
"If you think about how many records are affected in a breach, it really increases very quickly," Debra Farber, senior director for privacy strategy at BigID.
No alt text provided for this image


How To Get And Stay Compliant?

Let us set up a time to talk, and make this process a lot less scary and daunting!


[email protected]

206.709.9002 ext. 444017

Redefining "Working Remote"


要查看或添加评论,请登录

John McGillin的更多文章

  • Which Is a Better Value? Berkey Vs Brita
    2022年6月29日

    Which Is a Better Value? Berkey Vs Brita

    Before I was in sales, I was an accomplished Industrial Designer with patents in kitchen appliances with Black and…

  • Paying Myself First
    2022年5月16日

    Paying Myself First

    Pay yourself first Over my lifetime, I have heard this of this concept. When I was young, it was about saving.

    10 条评论
  • The Never-Ending Battle - Cybersecurity!
    2022年3月9日

    The Never-Ending Battle - Cybersecurity!

    This conversation will only continue to grow within our technology landscape. Everyone is at risk, and it's time to…

    3 条评论
  • How many People is 533 Million - breaking down the FB Hack
    2021年4月27日

    How many People is 533 Million - breaking down the FB Hack

    Facebook was hacked - I know many people, including my younger self who was in the club of "I have nothing to hide"…

  • VMware Cloud on AWS
    2020年9月15日

    VMware Cloud on AWS

    VMware Cloud on AWS gives businesses the ability to; successfully run, manage secure production applications Seamlessly…

  • Earn Carbon Credits - The Smart Way!
    2020年9月8日

    Earn Carbon Credits - The Smart Way!

    This program is incredible, I love the outdoors and this program is the easiest way your company can earn carbon…

  • Security Awareness Training and Simulated Phishing Platform
    2020年8月5日

    Security Awareness Training and Simulated Phishing Platform

    Helps you manage the ongoing problem of social engineering Old-school security awareness training doesn’t hack it…

  • 5 Reasons to Back-up O365
    2020年8月4日

    5 Reasons to Back-up O365

    In Office365, Microsoft is responsible for ensuring the infrastructure is always up and running. IT teams like yours…

  • Garmin Old News? WastedLocker a new kind of ransomware
    2020年7月27日

    Garmin Old News? WastedLocker a new kind of ransomware

    If you hadn't heard last week Garmin had a large scale targeted cyber attack. When trying to visit their page you will…

  • Recovering Critical Data & Systems from an outage
    2020年7月23日

    Recovering Critical Data & Systems from an outage

    Without BaaS: Although many organizations take every precaution imaginable, it is near impossible to reduce the threat…

    2 条评论

社区洞察

其他会员也浏览了