CCPA Compliance Service
Does The California Consumer Privacy Act Apply To You?
The CCPA is strong and carries high penalties for violations, but it might not apply to your company.
While the GDPR applies to all business websites, the CCPA only applies to a small subset of companies that do business with California Consumers. If you don’t meet at least one of these three thresholds, then the CCPA may not apply to you and your company. If it does apply to you, then compliance is mandatory. Here are those thresholds:
What Actually is the CCPA?
The CCPA is a California privacy law that went into effect on January 1, 2020. Its intention is to protect the privacy of California Consumers, beginning with the data created and collected on websites, and extending into the companies where the data is stored. The CCPA defines several new Privacy Rights for California Residents, some of which are very similar to those of the GDPR.
- Right to be Informed – To know what personal data is collected, and whether this information is sold or disclosed, and to whom.
- Right to Restrict – The right to decline to allow the sale or use of their personal data.
- Right of Access – Access to their personal information.
- Right to be forgotten – Have their personal information deleted.
- Right of Non-Discrimination – No discrimination if you exercise your privacy rights under the CCPA.
…and there are others. And these rights not only apply to data collected on a website, but data stored anywhere by the company.
What If My Business Is Not Based in California?
The purpose of the CCPA is not necessarily to regulate companies but to protect California Residents. If your company serves California residents, or if your website can be reached by California residents, and your company meets the thresholds listed above, then the CCPA applies to your company.
And just like the European GDPR applies to websites around the world, so does the CCPA potentially apply to all companies in the world.
Do You Need Our CCPA Compliance Services?
The sooner your website becomes CCPA Compliant, the lower your chances of legal trouble. Request a Consultation today and let's get started.
Why the CCPA Was Created ?
The reasoning behind the creation of the CCPA is similar to the reasoning behind the GDPR.
In the short history of the Internet, companies have been on a mad dash to collect, own and analyze consumer data.
The more a company knows about each person — or more importantly, the more a company knows about groups of people — the more money it can make.
And so the underlying premise used to be that the companies who collect the data about you actually own the data about you. But not any more. The CCPA, and other privacy laws like Europe’s GDPR, now say that YOU own the data about YOU.
And since you own your own data, you have certain rights with respect to that data.
What Are The Risks Of CCPA Non-Compliance?
The CCPA has strict reporting requirements in the event of a data breach. And the penalties for a breach are at one level if you complied with the CCPA and took the recommended steps to prevent breaches, but the penalties are much more expensive if you avoided compliance. Most business owners spend almost as much time reducing or avoiding risk as they do generating revenue. But some still prefer to take on the risks and roll the dice.
If that’s you, you might be lucky and go years without a data breach, or without ever having to comply with a CCPA rights request. But the day you do, you will most certainly regret not having prepared for it.
So what are the penalties or damages allowed under the CCPA?
- Fines for Non-Intentional Violations. Up to $2500 per violation.
- Fines for Intentional Violations. Up to $7,500 per violation.
For each of the above, a “Violation” is the breach of each individual data record. But it could also be a simple failure to honor a rights request, such as the Right to Forget. So, if you ignore a dozen rights requests, your penalties could be $36,000 or more. And if you have just 1,000 customer files that are breached, you’re in the many millions of dollars in potential fines.
- Private Lawsuits: The CCPA differs from the GDPR in that it allows for private individuals to sue a company if their data is breached.
Statutory damages are between $100 and $750 per consumer, per incident. Add Attorneys Fees and other costs, and it can get very expensive, very quickly.
Ask about our significant discounts when you combine our CCPA compliance service with our GDPR compliance service.
Our CCPA Compliance Service begins with a CCPA Data Audit, CCPA Software Installation & Configuration, Creation of CCPA-required Legal notification pages, and our CCPA Cookie Consent System. Our service continues with our monthly “Gold” Security Assurance Services, which you can read more about here.
Small & Growing BusinessesWebsites up to 100 Pages
- $995 Installation
- Up to 3 Hours Privacy Compliance Consulting & Configuration
- 1 Hour of Website Updates, Monthly
Large BusinessesWebsites up to 500 Pages
- $1295 Installation
- Up to 4 Hours Privacy Compliance Consulting & Configuration
- 2 Hours of Website Updates, Monthly
Corporate BusinessesWebsites up to 1000 Pages
- $1495 Installation
- Up to 5 Hours Privacy Compliance Consulting & Configuration
- 3 Hours of Website Updates, Monthly
Note: Pricing listed above is per subdomain. For example, www.MyDomain.com and account.MyDomain.com are separate subdomains and each requires separate software, separate effort and separate purchases. This service is provided for WordPress Websites Only. Except for third party payment processors or forms or emailing systems integrated directly into the Supported Website(s), any data (or reference to data) initially collected by, or processed by other subdomains, client websites, third-party websites, systems, machinery or other methods is not included in our services.
Our CCPA Compliance Service Includes...
The CCPA is a whole-company data privacy initiative that involves legal, technical and policy changes about how your company handles data internally. The “front end” parts of the CCPA are implemented on your website. That’s what we can do for you.
So our CCPA Compliance Service, which is designed for WordPress websites, puts us on your company’s CCPA Compliance Team. And as part of your Team, this is what we will do for you:
Planning & Strategy Phase
Data Security And The CCPA
Like the GDPR, the CCPA requires that you keep your data secure, so we include our monthly Security Assurance Service as part of our CCPA Compliance Service. It’s designed to keep WordPress websites secure and their data safe. The service includes…
- Daily backups of your website
- Weekly updates of all the software on your website
- Maintenance of your software firewall to prevent intruders
- One to Four hours of website updates or technical support each month
- 10% discount on additional hourly work
- If your website is ever hacked, we will either remove the malware or restore the site from our latest good backup for free.
These services are designed to help secure your website’s data.
Cyber Security Bonus
You are also required to keep your internal company network secure in order to prevent data breaches there, where phishing, ransomware, and data exfiltration are a constant threat. So we have arranged with a top Los Angeles Cyber Security firm to provide for you, free of charge:
- An internal company GDPR & CCPA Cyber Security Overview, which will give you a brief, overall picture of your company’s security readiness, and point out your greatest vulnerabilities.
The certificate has a value of $200, but it is yours free as a bonus when you sign up for our CCPA or GDPR front end compliance services.
Do You Need Our CCPA Compliance Services?
The sooner your website becomes Compliant, the lower your chances of legal trouble. Request a Consultation today and let's get started.