Comply With the California Consumer Privacy Act

The start of a privacy revolution.

Do not fill in this field

Enter no text in this field

Get Instant Access
to this Blueprint

Business Email

Full Name

Company

Phone

Job Title

View Storyboard

Contributors

Mark Bailey, CIO/CTO, Thiele
Leon Ravenna, CISO, KAR Auction Services
Eight anonymous contributors

Constant changes and amendments to the California Consumer Privacy Act (CCPA) make it unclear what needs to implemented.
Organizations are unclear on how to operationalize the anticipated increase in data requests from customers or consumers.

Our Advice

Critical Insight

Subject Access Requests are the most critical element of CCPA.
Build structured data flows. There are many ways to make data flow diagrams. The Info-Tech approach is to use structured swim lanes vs. the historically unorganized visuals.
The effort to identify a subject’s applied regulation is not worth the effort: accept all Subject Access Requests regardless of jurisdiction.

Impact and Result

This blueprint will help you understand CCPA requirements for responding to data subjects or California residents:

Formalize your business-wide operationalization of CCPA.
Understand the risk of CCPA non-compliance.
Expand subject request processes to all of your data subjects .

Start here – read the Executive Brief

Read our concise Executive Brief to find out why you should comply with CCPA, review Info-Tech’s methodology, and understand the four ways we can support you in completing this project.

Comply With the California Consumer Privacy Act – Executive Brief

1. Create a Subject Access Request (SAR) process

Understand where your data flows in order to respond to consumer requests for their data.

Guided Implementations

This guided implementation is a five call advisory process.

Call #1 - Understand the types of data requests.

Call #2 - Identify business processes that require data flow visuals.

Call #3 - Build a consumer request process and identify how consumers will submit requests.

Call #4 - Build out procedures for others to action a subject request.

Call #5 - Understand how you will create an iterative process.

After each Info-Tech experience, we ask our members to quantify the real time savings, monetary impact, and project improvements our research helped them achieve. See our top member experiences for this Blueprint, and what our clients have to say.

Client

Experience

Impact

$ Saved

Days Saved

Testimonial

Fleet Feet Sports

Guided Implementation

10/10

$3,000

Both the actual discussions and the follow-up emails throughout the week were equally very helpful. Any question she didn't know the answer to, she looked into for us. I'm not sure how to quantify the value or time, but I feel we could not have done it w...

DCI Marketing Inc

Guided Implementation

8/10

$2,009

ISS

Guided Implementation

8/10

$31,833

Aaron was very knowledgeable and willing to discuss features of GDPR that overlap and to show me where some tools are on the InfoTech site that would be helpful to our individual situation.

Search Code: 89646
Published: September 18, 2019
Last Revised: September 18, 2019

TAGS:

CCPA, California privacy act, California privacy, US privacy, US privacy regulations, California privacy regulations, GDPR, global privacy rules, privacy regulations to adhere to, what does CCPA mean, how to implement privacy regulations, how to implement CCPA, US state regulations