Has California Just Created GDPR 2.0?


Data protection is paramount in an age where cybercrime has reached epic proportions. This is evidenced by the fact that in 2017, there were almost 5 million data records stolen every single day. Laws that protect our personal information and that offer user-centric control over personal data use are now in existence in many countries.

One of the most recent updates to existing laws around data protection is the California Consumer Privacy Act of 2018 (CCPA) which was approved on June 28, 2018. California has always led the way in consumer privacy in the USA and the new law which refers to existing privacy laws in California is another example of the privacy vanguard.

Data privacy has also been making the headlines lately because of the EU’s General Data Protection Regulation (GDPR). The California Consumer Privacy Act has been hailed by some as being a more-achievable privacy law than the GDPR. In this article, we’ll take a look at some of the similarities and differences between these two laws.

What is the California Consumer Privacy Act About?

In the U.S., data protection laws are varied in nature. The Federal Trade Commission Act, for example, is applied to the protection of privacy of consumers. They also enforce the Children’s Online Privacy Protection Act (COPPA). Other privacy and data protection laws are on a state-by-state basis or industry-specific, like HIPAA. However, California is a state that has taken data privacy very seriously and has, in the past, taken the lead on several fronts regarding privacy, including requiring an online privacy policy and passing a data breach notification law. The CCPA is just another example of this.

The CCPA is set to be enacted on January 1, 2020 and will increase the requirements of business to protect personal data privacy. (Read more...)

*** This is a Security Bloggers Network syndicated blog from InfoSec Resources authored by Susan Morrow. Read the original post at: