In June of 2018, California passed a consumer privacy act (AB 375). This new regulation, which went into effect on January 1, 2020, could possibly have a dramatic impact on U.S. companies and how they handle consumer data. In fact, the CCPA could have as great an impact on U.S. companies as the General Data Protection Regulation (GDPR) has on European-based organizations.
What is the CCPA?
The California Consumer Privacy Act (CCPA) was created to set rules regarding how companies manage the personal information of California consumers. The CCPA is not, however, restricted to California companies. It grants California consumers a set of rights regarding the access and deletion their data. At the same time, it outlines restrictions for entities that capture, manage, and sell the personal information of California residents.
Which Companies Does the CCPA Impact?
Any company that provides products and services to California residents and has at least $25 million in annual revenue must comply with the law. And any company, regardless of size, that handles the personal data of 50,000 people or more or that collects more than 50% of its revenues from selling personal data, must comply with the regulation. Importantly, companies do not have to be based in California or have a physical presence in that state to be fall under this regulation. It even applies to companies based outside of the U.S.
What are the Penalties for Non-Compliance?
Under the CCPA, civil penalties can range from $2,500 to $7,500, depending on whether the violation is deemed to be intentional. In some cases, a business will not be held liable if it resolves the issue within 30 days after notification of the alleged non-compliance. The CCPA also provides consumers with a right of action they bring under certain circumstances if a business causes a data breach.
Employee Training for CCPA Compliance
One of the primary steps that a company must take toward achieving CCPA compliance is in providing training to:
Employees who handle and respond to consumer inquiries about company privacy policies
Those responsible for implementing the business’s CCPA compliance
The first step for the organization is in determining which employees need to be trained. In practice, all employees that respond to inquiries regarding the company’s privacy practices, including the CCPA, must receive proper training.
eLearning for CCPA Training
eLearning provides an efficient and cost-effective means of training employees for CCPA compliance. Unlike classroom-based training, eLearning allows your company to quickly and easily deploy comprehensive training content and courses. Your users are able to conduct their training activities at their own pace and convenience and your program administrators can monitor learning activities through an embedded set of reporting and analytics tools.
LMS Portals for CCPA Training
LMS Portals provides a powerful SaaS-based platform for CCPA training. Our system allows you to quickly and easily build and deliver eLearning content and training courses through your own corporate-branded eLearning portal. The system includes powerful tools for student onboarding, messaging, analytics, and more.
Contact us today to get started for free!