TrustArc Blog

How to Prepare for the California Consumer Privacy Act “Look Back” Requirement

November 15, 2018

The California Consumer Privacy Act (CCPA) will be effective January 1, 2020, but the 12-month “look back” requirement means that companies will need records of personal information collected dating back 12 months before January 1, 2020, which is January 1, 2019. While January 2020 seems far away, creating and maintaining data inventories and flows beginning January 2019 to meet the “look back” requirement will take time. With less than two months to go, companies should secure a budget, develop a process, and evaluate tools to help implement the process. The budget should take into account supplying your team with the … Continue reading How to Prepare for the California Consumer Privacy Act “Look Back” Requirement

TrustArc Participates at California Lawyers Association IP Institute

November 13, 2018

On November 8th in sunny San Jose, TrustArc was pleased to take part at the California Lawyers Association’s annual IP Institute.  Speaking on a panel entitled GDPR: Lessons Learned from the Front Line, TrustArc shared tips and insights both for organizations still working towards GDPR compliance, and for those seeking to take their privacy programs to the next level, including for interoperability with other global privacy laws and frameworks. Not lost in the discussion was the fact that many law firms, of all sizes, are likewise still looking to their own GDPR/privacy compliance, which is critical to their being viewed … Continue reading TrustArc Participates at California Lawyers Association IP Institute

TrustArc Partners with the Department of Commerce for Privacy Workshops

November 07, 2018

Due to the high demand of our Privacy Workshop Series last year, we have held the series again this year. In addition to our own privacy experts, we have joined forces with privacy experts from the Department of Commerce too! The topics include: EU GDPR, EU – US Privacy Shield Framework, and California Consumer Privacy Act (CCPA). Specifically, the speakers dive into: Data Mapping, Records of Processing, DPIA / PIA Management, International Data Transfer, Individual Rights / Data Subjects Access Rights Management, Consent Management, and Compliance Reporting. The workshops are designed to help businesses achieve, demonstrate, and manage ongoing compliance … Continue reading TrustArc Partners with the Department of Commerce for Privacy Workshops

California Companion Privacy and Cybersecurity Bills – S.B. 327, A.B. 1906

October 12, 2018

On September 28, 2018 California Gov. Jerry Brown signed into law two companion bills that regulate cybersecurity standards for Internet of Things (IoT) devices sold in California. S.B. 327 and A.B. 1906 (the “Bills”) require that manufacturers of connected devices sold in California outfit their products with “reasonable” security features by January 1, 2020, the same date the California Consumer Privacy Act will also take effect. The Bills require a manufacturer of a connected device, to “equip the device with a reasonable security feature or features that are appropriate to the nature and function of the device, appropriate to the … Continue reading California Companion Privacy and Cybersecurity Bills – S.B. 327, A.B. 1906

What You Need to Know About California Consumer Privacy Act Amendments

September 17, 2018

On June 28, 2018, the California Consumer Privacy Act (CCPA) was unanimously passed. It is slated to go into effect January 1, 2020, and it is set to be the toughest privacy law in the United States. It broadly expands the rights of consumers and requires businesses within its wide scope to be significantly more transparent about how they collect, use, and disclose personal information. While it is a California law, a business outside of California must also comply if it conducts business with residents (natural persons) of California. 1   As expected, it was recently updated to address some … Continue reading What You Need to Know About California Consumer Privacy Act Amendments

IAPP & TrustArc Web Conference on New Research — How Privacy Tech Is Bought and Deployed

August 14, 2018

The number of technology solutions available to help privacy professionals get their jobs done has exploded in recent years. With more and more stringent legal obligations to comply with every year, privacy teams need efficient and effective tools to manage data flows within their organizations, and to comply with requests for personal information from customers. So with a plethora of offerings, how to sift the wheat from the chaff? What tools are fully matured and worth their cost, and which are promising but not quite ready for real-time implementation? In May 2018, IAPP and TrustArc surveyed 328 privacy professionals around … Continue reading IAPP & TrustArc Web Conference on New Research — How Privacy Tech Is Bought and Deployed