• Home
  • Blog
  • Preparing for the Next California: Will More States Enact Consumer Privacy Laws?
Preparing for the Next California: Will More States Enact Consumer Privacy Laws?

Preparing for the Next California: Will More States Enact Consumer Privacy Laws?

May 04, 2018 / Kron

Modeled after the European Union’s General Data Protection Regulation (GDPR), which was brought into force at the beginning of May 2018, the California Consumer Privacy Act (CCPA) was signed into law in June of the same year and although the requirements do not go into effect until Jan 1, 2020, many are already deliberating if it will spread its roots to more states, provoking them to follow suit and enact privacy laws of their own.

As it stands, companies and any for-profit businesses that deal with the collection and processing of California state residents’ personal information or do business in the state will have to comply. In addition, the business must fall into one of the following criteria for it to apply, these are:

The business should generate an annual gross revenue of over $25 million
The business should determine a minimum of 50% of its annual revenue by the sales of the personal information of California residents
or

The business should annually receive or share the personal information of 50k or more California residents
The rise in the threat of data breaches means that the likelihood of similar regulations coming in to force throughout the U.S. is a real possibility in a means to protect the general public. With regulations in data privacy generally having heavy penalties in place for noncompliance, having regulations in place will help ensure that businesses do the right thing, even if solely to avoid fines.

Consumers are also beginning to see that their data is worth something and will no longer give it up freely, adapting the way that they share their personal information, with whom, and how much is shared is now on the forefront of their minds. They want to know how it is going to be used and what they get from sharing their information. The CCPA gives consumers new rights which give them more control over their personal information. These are:

  • Businesses must let consumers know what personal information is being collected from them. How it is being collected and used and if and to whom it is being disclosed or sold to.
  • Consumers must be presented with an easy process to opt-out of having their personal information sold to a third party.
  • Consumers can request that a business remove any personal information that they may have on the consumer and businesses must inform the consumer that they have this right. The information must also be deleted by any third party with whom the business may have shared the consumer’s personal information.
  • A business cannot discriminate against a consumer who has asked for their information to be deleted. This prevents companies from charging a fee because they exercised a right under the new regulation.

With the prospect of more states developing regulations to match the CCPA, it leads to a need for collaboration between the government and industry to decide on general policy protections and best practices.

Establishing national guidelines becomes increasingly important as state-level initiatives become unbalanced and a challenge for businesses and agencies to implement, for example, in Europe, the concern is growing about the extent of the implementation and consistent application of the GDPR rules across its EU member states.

Financial constraints and the lack of enough human resources for the national data protection authorities (DPAs), particularly in countries such as Spain, Italy, Romania, and Greece do not get the resources needed to effectively perform their tasks or to put their powers to use. This creates a challenge in assistance and cooperation between the DPAs and the EU.

The GDPR continues to address early adoption issues, and the CCPA may not have gone into effect just yet – but businesses should start to formulate a plan even if the law may not impact them.

More regulation is coming and being preparing for the future is the best course of action, including ensuring that every organization serving the public has security solutions in place, including ensuring all data is secured against cybercrime, and all individuals within an organization are being observed and managed, reducing internal threats and external attacks.

 

Author: Ali Gomulu

Highlights

Enhancing Cybersecurity with AI-Powered Privileged Access Management

Enhancing Cybersecurity with AI-Powered Privileged Access Management

Mar 20, 2024
Reducing Cyber Insurance Costs with Kron PAM: A Smart Move for Businesses

Reducing Cyber Insurance Costs with Kron PAM: A Smart Move for Businesses

Apr 18, 2024
Unlocking Efficiency: The Strategic Advantages of SaaS PAM in Business

Unlocking Efficiency: The Strategic Advantages of SaaS PAM in Business

May 06, 2024
UK’s Telecommunications Security Act (TSA) Code of Practice

UK’s Telecommunications Security Act (TSA) Code of Practice

May 09, 2024
Exploring PAM Deployment Options and Choosing Between SaaS and On-Premise Solutions

Exploring PAM Deployment Options and Choosing Between SaaS and On-Premise Solutions

May 16, 2024
Elevating Privileged Access Management with Kron PAM and Microsoft Entra ID Integration

Elevating Privileged Access Management with Kron PAM and Microsoft Entra ID Integration

May 23, 2024
Enhancing Security with Kron PAM's Multitenancy: A Game-Changer for Large Organizations

Enhancing Security with Kron PAM's Multitenancy: A Game-Changer for Large Organizations

Jun 10, 2024
Safeguarding Your Business from Misuse of AI with Kron PAM

Safeguarding Your Business from Misuse of AI with Kron PAM

Jun 24, 2024
Solving the Privileged Access Management Challenge in Dynamic Cloud Environments

Solving the Privileged Access Management Challenge in Dynamic Cloud Environments

Jul 29, 2024
Secure Your Privileged Access: Insights from IBM’s 2024 Breach Report

Secure Your Privileged Access: Insights from IBM’s 2024 Cost of A Breach Report

Aug 07, 2024
Say Goodbye to Hardcoded Secrets: Secure Credential Management with Kron PAM

Say Goodbye to Hardcoded Secrets: Secure Credential Management with Kron PAM

Aug 19, 2024
Achieving GDPR Compliance with Kron PAM

Achieving GDPR Compliance with Kron PAM

Aug 27, 2024
Kron DAM & DDM Recognized in Gartner's Market Guide for Data Masking and Synthetic Data

Kron DAM & DDM Recognized in Gartner's Market Guide for Data Masking and Synthetic Data

Sep 30, 2024
Enhancing Healthcare Security with Kron PAM: Protecting Patient Data and Ensuring Compliance

Enhancing Healthcare Security with Kron PAM: Protecting Patient Data and Ensuring Compliance

Oct 21, 2024
Ensuring Enterprise Security: Kron PAM’s Strategy for Managing and Auditing Privileged Access

Ensuring Enterprise Security: Kron PAM’s Strategy for Managing and Auditing Privileged Access

Nov 06, 2024

Other Blogs

Blog
Cyber Threats Keep Challenging the Healthcare Industry

Cyber Threats Keep Challenging the Healthcare Industry

Jul 11, 2023 Read More

Blog
Facilitate Regulatory Compliance with Privileged Access Management

Facilitate Regulatory Compliance with Privileged Access Management

May 16, 2021 Read More

Blog
Cybersecurity Risks That Use Metaverse As a Tool

Cybersecurity Risks That Use Metaverse As a Tool

Sep 18, 2022 Read More

Blog
Decentralized Privileged Access Management (PAM) Benefits and Challenges: Keeping Edge-to-Cloud Organizations Secure

Decentralized Privileged Access Management (PAM) Benefits and Challenges: Keeping Edge-to-Cloud Organizations Secure

May 02, 2021 Read More

Blog
Privilege Escalation Explained: Types, Cases, And Prevention

Privilege Escalation Explained: Types, Cases, And Prevention

Apr 24, 2022 Read More

Blog
Protect What You Connect: Krontech’s Vision, Our Collective Mission

Protect What You Connect: Krontech’s Vision, Our Collective Mission

Oct 04, 2017 Read More

Contact Us

Contact us to learn more about Kron Technologies' telecom and cybersecurity products.