First the GDPR, Now California’s Consumer Privacy Bill: Your Ultimate Association Data Privacy Checklist
While many associations are still working to comply with GDPR, the State of California passed a new Consumer Privacy Bill that will have a significant impact on numerous organizations around the world. Here is what associations need to know:
Associations that need to comply with the new regulations are required to give California consumers an effective way to control their personal information by ensuring the following rights:
- The right of Californians to know what personal information is being collected about them.
- The right of Californians to know whether their personal information is sold or disclosed and to whom.
- The right of Californians to say no to the sale of personal information.
- The right of Californians to access their personal information.
- The right of Californians to equal service and price, even if they exercise their privacy rights
The first step to managing data privacy is to document what personal data you have and what processing you are doing with it. All subsequent steps are dependent on this information being accurate.
In order to mitigate the risks related to data privacy compliance whether it be GDPR, California Privacy, or future state/country specific requirements, this list will be helpful:
Associations who meet the following conditions need to comply:
- Annual gross revenue over $25 Million
- Buy, sell, share, or processes personal data on over 50,000 California residents
- Derive 50%+ of annual revenue from selling personal information
The deadline for compliance is January 2020. Click here for more resources on Data Governance...