Passed by voters in 2020, the California Privacy Rights Act (CPRA) made significant changes to the state’s existing privacy law, the California Consumer Privacy Act (CCPA). The CPRA includes several new privacy obligations, and helps bring the law closer in line with its European counterpart, the General Data Protection Regulation.
Businesses that are required to comply with the CPRA were given two years to bring their operations into compliance, but the law’s effective date and enforcement date are fast approaching.
The CPRA has two very important dates: the date when it goes into effect and the date when it becomes enforceable.
The CPRA goes into effect on January 1, 2023. On that day, it replaces the prior version of the CCPA, and businesses that don’t follow its requirements will be out of compliance.
However, in order to ease the transition for businesses, the new provisions of the CPRA do not become enforceable until July 1, 2023. This means that, even if they are non-compliant, businesses can not be subject to fines or injunctions with regard to the new requirements. This date is also significant because it is when the newly created California Privacy Protection Agency (CPPA) will take over enforcement duties from the Attorney General’s office.
The six-month delay in enforcement should not lull businesses into a false sense of complacency, because the old requirements of the CCPA are still enforceable. The California Attorney General can impose fines for non-compliance, and has already done so. Businesses therefore should not treat this a free grace-period to ignore CCPA compliance altogether, but instead should be working as quickly as possible to incorporate the new privacy requirements, some of which are quite substantial.
There are a few reasons for this:
2023 will be a big year for data privacy in the United States. Not only are the new provisions from the CPRA going into effect, four other new state laws are going live as well. Businesses of all sizes are trying to cope with an increasingly complicated patchwork of privacy legislation.
TrueVault US simplifies privacy compliance across multiple state laws, so that businesses can handle it on their own. With an interface that is similar to online tax software, TrueVault guides you through every step of the process, from onboarding vendors to handling privacy requests.
Contact our team to learn more and view a demo of how TrueVault works.
Disclaimer: This content is provided for general informational purposes only and does not constitute legal advice. This content is not a substitute for obtaining legal advice from a licensed attorney. The information on this page may be changed without notice and is not guaranteed to be complete, correct or up-to-date, and may not reflect the most current legal developments.
Our attorney-designed software will step-by-step guide you through the compliance process from start to finish.
Request a Demo201 Mission Street, 12th Floor
San Francisco, CA 94105
Email: hello@truevault.com
2022 © All Rights Reserved. Privacy Policy | Terms of Use | California Privacy Notice