Issue link: https://www.code42.com/resources/i/1425662
COMPLIANCE CCPA Code42 and the CCPA Our Insider Risk Management solution, Incydr, supports customer compliance with CCPA requirements, giving organizations the critical data risk detection and response capabilities as well as data preservation capabilities needed for handling personal information. Incydr provides a powerful data protection foundation that contributes to a long-term compliance strategy and prepares organizations to meet evolving regulations and complex compliance requirements. What is the CCPA? The California Consumer Privacy Act ("CCPA") is a comprehensive privacy law that went into effect on January 1, 2020. Similar to the EU's GDPR, the CCPA is aimed at strengthening data protection and giving California residents greater control over their personal information. It grants new rights for individuals and requires businesses to assess and be transparent about their data collection, use and sharing practices and to take steps to protect personal information. Who does the CCPA apply to? The CCPA's reach is global. It applies to any for-profit business - no matter where located - that does business in California and meets any of the following criteria: Has a gross annual revenue of over $25 million Buys, receives, or sells the personal information of 50,000 or more California residents, households, or devices; or Derives 50% or more of its annual revenue from selling personal information of California residents What are some key requirements? California residents are granted rights over their personal information, including: The right to request access to their personal information The right to request a business delete their personal information The right to opt-out of the sale of their personal information Businesses have increased obligations, including: Providing notice to individuals about the types of personal information collected and how that information is being used, sold and/or disclosed Informing individuals of their rights under the CCPA and having processes to respond to consumer requests Implementing reasonable security measures to protect personal information from unauthorized access or acquisition Only providing personal information to a service provider pursuant to a written contract that limits the service provider's processing of the data How does Incydr enable customers to comply with CCPA? Incydr is a service provider under the CCPA, and we are committed to helping our customers comply. Incydr enables you to see how your employees move data across vectors - including web browser uploads, cloud sync activity, cloud file sharing, email and use or removable media - so you can take quick action to mitigate risk of data exfiltration and non-compliance. The visibility offered by Incydr enables you to detect and quickly investigate and respond to data loss, leak and theft. All data transferred to Incydr is encrypted in transit and at rest. Incydr only uses your data in accordance with our customer agreements and for the purpose of providing our products and services. Incydr does not, and will not, sell the data. Our Master Services Agreement automatically incorporates a Data Processing Addendum ("DPA"), which contains the necessary provisions required under the CCPA. View our DPA. © 2022 Code42 Software, Inc. All rights reserved. | CP_CCPA_Code42