On Jan 1st, 2020 as many of us were sleeping off the revelry from the previous night, silently the CCPA (California Consumer Protection Act) went into effect.
GDPR has been in effect for some time now, but it has mostly been viewed as a European thing not relevant to US companies if they don't do business with Europe. With CCPA, the lines get more blurry with US companies as many do business with people who are California residents.
Why do we care about data protection acts? Everyday there are more companies with news of a new data breach. Companies have been very irresponsible in how they secure the data that they collect. Consumers must be protected.
All California residents are protected regardless of their relationship with the organization (consumers, business leaders, employees) or whether the information is online or offline.
So, while CCPA is currently in effect you won't be assessed fines or penalties until July.
Along with California, many other states are also enacting their own data protection acts.
GDPR Personally Identifiable Information
Includes the GDPR PII but it also includes any information that would identify a "household"
CCPA also includes any inferences drawn about a consumer reflecting:
Let's say that there are 1000 customers who wish to be deleted
Download a trial copy of our products at https://www.idera.com/