New Year, New Privacy Rights — and Rules
Dans cet article
The penalties are strict, but there's a grace period
The law takes effect Jan. 1, but enforcement won't begin until July 1. After that, your business can be fined $2,500 - $7,500 for each violation. For the first time, individuals also have the right to bring costly lawsuits against businesses that don’t comply with disclosure or deletion requests, or are responsible for data breaches of their personal information.
Is your business ready?
If your company does business in California, there are several steps you’ll need to take to comply with the law:
Update your privacy policy to be clear and transparent.
Notify employees and contractors in California about the personal information you’re collecting and how it’s being used. Rippling can automate this privacy notice for you starting in mid-January.
Implement security best practices to avoid data breaches. Rippling customers have access to password management, app provisioning, device management, and more.
Additionally, companies that collect personal information from consumers should:
Conduct an inventory of all the personal data your business collects and who has access to it -- including vendors.
Give consumers at least two ways to submit requests to ask for their data and demand that it be deleted. One must be a toll-free phone number.
Establish protocols to make sure you can respond to these consumer requests within 45 days.
If your business sells customer data, you must notify them and provide a clear link on your website titled "Do Not Sell My Personal Information" to let them opt-out.
Train any employees who handle consumer data requests or are responsible for your company’s legal compliance on their responsibilities under CCPA.
California is the first state to enact comprehensive data privacy legislation, but it won’t be the last. In fact, nearly two dozen other states have already followed suit. Whether or not you're subject to the law on Jan. 1, CCPA will set a new standard for how businesses nationwide manage data. Don’t delay. Invest now in getting your house in order.
Clause de non-responsabilité
Rippling et ses filiales ne fournissent pas de conseils fiscaux, comptables ni juridiques. Ce document a été préparé à titre d’information uniquement ; il n’est pas destiné à fournir des conseils fiscaux, comptables ni juridiques, et ne doit pas être utilisé comme tel. Vous devez consulter vos propres conseillers fiscaux, comptables et juridiques avant de vous engager dans une quelconque activité ou transaction connexe.
Author
Vanessa Wu
Directrice juridique
Établie à San Francisco, Vanessa est directrice juridique chez Rippling où elle supervise les équipes chargées des questions juridiques, de la conformité, des risques d’entreprise et des audits internes. Avant de rejoindre Rippling, elle a occupé le poste de conseillère sur des contentieux à enjeux élevés dans un cabinet privé et a été directrice juridique au sein d’une entreprise technologique cotée en bourse.
Voir Rippling en action
Faites davantage d’économies, automatisez les tâches fastidieuses et prenez de meilleures décisions en gérant les RH, l’IT et les finances en un seul endroit.