All you need to know about the California Consumer Privacy Act (CCPA)
Like GDPR, the California Consumer Privacy Act (CCPA) ushers in stricter data privacy protections, this time for California residents. We’ve created a CCPA library of frequently asked questions (FAQs) to provide the answers you’ve been searching for.
What does CCPA stand for?
CCPA stands for California Consumer Privacy Act
What is CCPA?
The California Consumer Privacy Act (CCPA) is a state statute intended to enhance privacy rights and consumer protection for residents of California.
What does CCPA do?
The California Consumer Privacy Act (CCPA) grants California residents new rights regarding their personal information and imposes various data protection duties on for-profit entities conducting business in California.
Who is subject to CCPA?
In a nutshell, for-profit companies doing business in California or with California residents. More specifically, California Consumer Privacy Act (CCPA) applies to for-profit entities that do business in CA and meet one of the following criteria:
- Global revenue is greater than $25M (global revenue; not just CA); or
- Collect PI information of 50K consumers (globally); or
- Derives 50% of revenue from selling data
The law also applies to any entity that controls, is controlled by, or shares common branding with a for-profit business meeting the test above.
Does CCPA apply to nonprofits?
California Consumer Privacy Act (CCPA) does NOT apply to non-profits (unless it controls a for-profit entity)
What does CCPA mean for event industry professionals?
For event industry professionals, California Consumer Privacy Act (CCPA) means changes are needed to ensure compliance, primarily providing your stakeholders with:
- Transparency: Clearly stating what information you collect and how you use and share the information you gather about attendees, sponsors, and exhibitors.
- Consumer rights: Providing stakeholders with the right to delete their information, get access to their information, and opt out of having their information sold.
- Data security: Ensuring due diligence by understanding how sensitive information is being stored and that it’s being reasonably protected.
We’ve heard a lot about GDPR – how is GDPR and CCPA different?
The General Data Protection Regulation (GDPR) and California Consumer Protections Act (CCPA) are similar, but not the same. Consumer rights, the right to access information, the right to change information, portability, and the right to delete information are all the same. But where GDPR permitted companies to use information whether with your consent or for legitimate business interest, CCPA doesn’t require either. CCPA focuses on transparency - letting consumers know what is going to be done with their information so that they can decide if they want to opt-out.
When does CCPA go into effect?
January 1, 2020
When does CCPA enforcement start?
July 1, 2020
Does Cvent provide CCPA solutions?
We're here to help! While California Consumer Privacy Act (CCPA) may look like a daunting challenge, you can turn it into an opportunity. By ensuring you have the right event management technology in place to adhere to the new regulations, you can be a standard bearer in your industry for the protection of personal information. Get in touch with us today to find out how we can help drive your CCPA compliance.
Cvent is taking the necessary steps to ensure your event data won’t let you down. To learn more and get helpful resources, please visit our Event Professionals and CCPA page
To see more California Consumer Privacy Act (CCPA) frequently asked questions, please visit our California Consumer Privacy Act FAQs page.