The law stands to have far-reaching consequences for many businesses across the country. Although the CCPA is similar to the GDPR, each has unique requirements. As a result, even businesses that have already addressed their GDPR compliance obligations will need to review their data activities before they undertake new data privacy efforts.
Important Dates
- January 1, 2020: CCPA will go into effect (with a 12-month lookback period)
- Spring 2020: Final regulations from Attorney General will be issued
- July 1, 2020: Attorney General will begin enforcement
Baker Donelson's Data Protection, Privacy and Cybersecurity attorneys have extensive experience helping our clients comply with privacy laws in the U.S. and around the globe. Our team members work with businesses to help them understand the impact that CCPA and other state law will have on their business (even if they are outside of California).
As with all privacy laws, businesses need to understand and identify the data that is impacted and determine what updates to their privacy policies will need to be made to be in compliance. Our team of privacy attorneys work with clients across industries to assist in:
- Strategic planning with respect to data inventory and mapping
- Compliance readiness assessments, including privacy and data security gap assessments
- Preparation of privacy notices
- Compliance program development, implementation and training
- Risk management, including vendor diligence and contracting
- Identifying, engaging and managing IT consultants and solutions
Industry sectors that we provide guidance include:
- Advertising, marketing and digital media
- Financial services/wealth management
- Health care
- Hospitality
- Human resource services including employee benefit providers
- Manufacturing, including automotive
- Professional services organizations
- Real estate
- Retail
- Software and Software-As-a-Service providers