The Top Reasons Why Your CPRA Compliance Strategy is Likely Broken and How to Fix It
Presented by Today’s General Counsel and Exterro
Amalia Barthel, Privacy Consultant & Advisor, and a Lecturer and Academic Programs Advisor for University of Toronto, School of Continuing Studies
Peter Stockburger Partner, Dentons
Daniel Scholler, Product Marketing Manager, Exterro
CPRA, effective in 2023 is the most restrictive data protection law in the USA, with severe limits on consumer profiling, the creation of an enforcement agency, and substantial increases in penalties. With less than a year to go, it is critical for organizations to carefully assess the CPRA Compliance program to identify gaps, avoid pitfalls and minimize risks. Even organizations that have implemented a CCPA compliance program will need to consider how to enhance their compliance program to meet CPRA requirements and address the ever-changing privacy regulatory landscape. The CPRA’s extension of rights for employees beyond the right to know and a right to private action in the event of a breach of unencrypted data, will present a unique set of challenges for organizations that will need to understand what data they hold on their employees and where that data is stored, taking into account the CPRA’s lookback period that begins on January 1, 2022. Are you confident your CPRA Compliance strategy is not broken? Is your organization prepared to futureproof your privacy program in light of the key changes brought about by CPRA and the domestic and international variations that are certain to follow? Join this session to uncover the holes in your current program, why it needs your immediate attention and how to fix it for a smooth sail across the CPRA waters.
- An overview of the CPRA’s requirements and new obligations imposed on businesses.
- Why you a need strategic and defensible data retention framework to comply with the CPRA
- Key element s to successfully operationalize your CPRA compliance program