Dan Sholler, Amalia Barthel, Peter Stockburger
CPRA, effective in 2023 is the most restrictive data protection law in the USA, with severe limits on consumer profiling, the creation of an enforcement agency, and substantial increases in penalties. With less than a year to go, it is critical for organizations to carefully assess the CPRA Compliance program to identify gaps, avoid pitfalls and minimize risks. Even organizations that have implemented a CCPA compliance program will need to consider how to enhance their compliance program to meet CPRA requirements and address the ever-changing privacy regulatory landscape. The CPRA’s extension of rights for employees beyond the right to know and a right to private action in the event of a breach of unencrypted data, will present a unique set of challenges for organizations that will need to understand what data they hold on their employees and where that data is stored, taking into account the CPRA’s lookback period that begins on January 1, 2022. Are you confident your CPRA Compliance strategy is not broken? Is your organization prepared to futureproof your privacy program in light of the key changes brought about by CPRA and the domestic and international variations that are certain to follow? Join this session to uncover the holes in your current program, why it needs your immediate attention and how to fix it for a smooth sail across the CPRA waters.
Key takeaways:
- an overview of the CPRA’s requirements and new obligations imposed on businesses.
- Why you a need strategic and defensible data retention framework to comply with the CPRA
- Key element s to successfully operationalize your CPRA compliance program
Dan Sholler, Product Marketing, Exterro
Amalia Barthel, Lecturer and Advisor with Univ of Toronto, MPC Co-Founder
Peter Stockburger, Partner, Dentons
Readings: