Thank you to Solomon Williams for presenting on the California Consumer Privacy Act and what it can mean for your organization. In case you missed the live presentation, you can view the replay here, and read on for the webinar Q&A:
1. Does CCPA require you to act on your unstructured data as well? Or just structured data?
CCPA will require addressing both structured and unstructured data.
2. What are implications for "customer" data - for how a company promotes services/products to existing customers?
The impact should be minimal. As long as the data used for marketing is agreed upon by the customer, there should be no impact.
3. Can you cover the definition of “sold” data again?
“Sold” has many definitions - it’s not solely a matter of funds being received in exchange for a given data set, but also data sets being exchanged for other considerations, services received, or data exchanged for other data sets. All of these fall under the definition of “sold”, at least for the sake of the CCPA definition.
4.Do you anticipate this legislation being expanded to other states?
There are several states looking at similar legislation: Minnesota, Washington, Texas, and Pennsylvania are just a few that are actively seeking regulations like CCPA.
5. My organization doesn’t currently do business in CA, but is in talks to merge with a California-based company. What are best precautions we should take to prepare for CCPA if the merger goes through?
Understand the nature of the business you’re being merged with. Do they do business in California, and do they collect customer data? If the answer to these questions is yes, then it becomes a matter of planning. Connect with the respective legal and compliance departments, and get their guidance on the matter. Once legal and compliance have given feedback that this is something your company needs to address, I recommend reaching out to Datasource, and we can discuss options to address your needs.