- Yes, CCPA can apply to you even if you have no physical presence in California.
- Yes, if you have done some GDPR compliance you are in better shape for CCPA.
- No, your GDPR compliance work is NOT sufficient for CCPA compliance and there are still things to do.
- Yes, if you are a non EU controller you may be able to take advantage of some of the things CCPA does differently than GDPR.
- Yes, you will need to amend your privacy notice even if it is GDPR Article 13/14 compliant.
- Yes, you will likely need to amend your GDPR Art 28 Data Processing Agreements.
- Yes, if you have re-targeting cookies you will need a CCPA solution for them as well.
- Yes, if you collect information of children under 16 you have things to think about under CCPA as well.
- Yes, if you have loyalty programs and financial incentives you may need to address them under CCPA.
- No, CCPA is not the last we have heard of U.S. state privacy laws and many are on the horizon.
For a deeper dive into this topic, check out this webinar, created in partnership between Fox Rothschild LLP and SPIRIT LEGAL.