Security News > 2020 > January > California’s Tough New Privacy Law and Its Biggest Challenges
One of the bigger challenges with the CCPA is the question of tracking the location of that user data, Terry Ray, SVP and fellow with Imperva, tells Threatpost.
So CCPA changes a little bit of it in that CCPA says, look, you know, we're not asking everybody to comply to this, we're asking people that are going to store what California considered a reasonable amount of data - 50,000 records - if you store more than that you're relevant to CCPA, you have to start thinking about how am I going to protect that data, monitor that data, find that data and ultimately deal with processes around the potential breach of that data.
When you bring all those things together, that really is the gist behind a Privacy Act, whether it's consumer financial records, or whatever a Privacy Act is all about being able to build the processes, identify where you have whatever that data is, where it exists, where your risks might apply, and being able to build controls and monitoring around those risks.
So the challenges that companies have here is that they have to be able to work within the data.
So the advantage that consumers have is that there's already controls on private data, i.e., GDPR, that same capacity to be able to handle GDPR is already being done, it's likely to be the exact same report, they can go straight over to the CCPA auditor, because what's going to happen is a company's going to say, Look, you're only asking for my California residents' proof of audit and awareness and security, but I'm going to just benefit all my customers.
News URL
https://threatpost.com/californias-tough-new-privacy-law-and-its-biggest-challenges/151682/