What is a CCPA?

The CCPA provides augmented consumer protection to California’s almost 40 million residents. The Act offers those living, working, and consuming in California additional rights surrounding the use and collection of their personal data. The Act dictates that businesses must not discriminate against, nor penalize, any consumer that actively uses their CCPA rights. This covers quality of service, pricing, monetary transactions, and more. The CCPA focuses on empowering California’s consumers with the autonomy to take charge of their personal data in an ever-growing digital economy.

Applicability

The CCPA applies to any for-profit entity that does business in California, collects personal information about California consumers, determines the “purpose and means of processing” of that personal information, and meets one or more of the following criteria:

  • exceeds $25 million in gross annual revenue,
  • buys, receives, collects, processes, sells, or shares the personal information of at least 50,000 California consumers, households or devices per year, or
  • derives at least 50 percent of its annual revenue from selling California consumers’ personal information.

Objective

The objectives of CCPA are: 

  • The type of information you collect and process
  • The reason(s) why you collect and process this information
  • The means by which you collect and process information
  • The means by which users can request access to, edit, move or delete their information
  • The protocols for verifying the identity of the person who submits a request
  • The means by which a user can opt-out of the selling of their data

Approach

Our approach is mentioned below: 

Phase 1: Governance & Planning
Phase 2: Gap Analysis
Phase 3: Implementation 
Phase 4: Privacy Compliance, Risk Management Framework & Audit

      Why CyberSRC®?

      Established in January 2018, CyberSRC Consultancy offers the full machination of cyber security services ranging from threat intelligence, VMS to general advisory services in areas pertaining to Cyber security such as vulnerability attacks, compliance, and cyber security regulations, and laws. We are into system audits such as ISNP Audits, NBFC Audits, UCB Audits, PPI Audits, and SEBI Audits. We provide our solutions with better accountability. We are a certified assurance firm. We are an ISO 27001 certified organization, backed by a very diverse and dynamic team which have a combined experience.