Data Protection for Compliance with CCPA

Our solutions help ensure compliance with CCPA

CCPA

CCPA and GDPR
$750
maximum fine,
per consumer,
per incident
July 1, 2020
enforcement date for
CCPA compliance
$7,500
potential cost of failure to comply,
after receiving citation

What is CCPA?

The California Consumer Privacy Act (CCPA) is a data privacy law that went into effect on January 1. CCPA provides California residents with the ability to control how companies treat their personal information. Consumers will have the unprecedented ability to access, opt out of the sale or sharing, and delete their information. Some of the most common questions about CCPA:
  • WHO MUST COMPLY WITH CCPA?

    CCPA applies to all for-profit businesses that do business in California, collect and control the personal information of California residents, and derive 50% or more of their annual revenue from selling California residents' personal information OR have annual gross revenues of more than $25M OR receive or disclose the personal information of more than 50,000 California residents, households or devices each year
  • DO I HAVE TO COMPLY IF MY BUSINESS ISN'T LOCATED IN CALIFORNIA?

    Yes, if you do business in California or have customers in California, and you meet the criteria above. The scope of CCPA is tied to the where the consumers reside, as it was enacted to protect the rights of California residents.
  • HOW IS PERSONAL INFORMATION (PI) DEFINED UNDER CCPA?

    Under the CCPA, "Personal Information" is defined as “information that identifies, relates to, describes, is capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household.”

    Types of information considered to be personal information include, but aren't limited to, real name, alias, postal address, unique personal identifier, online identifier, internet protocol address, email address, account name, social security number, driver’s license number, passport number, records of personal property, products or services purchased, obtained, or considered, or other purchasing or consuming histories or tendencies, biometric information, Internet or other electronic network activity information, geolocation data, and professional or employment-related information.

    Any information that's publicly available is not considered personal information under CCPA. Aggregated data and deidentified data are also not considered personal information.
4% revenue
maximum fine for
non-compliance
250 cases
of fines being levied for
failure to comply
$16M
the average spent by Fortune 500
companies on compliance efforts
Download our FIDO and GDPR White Paper

How Does StrongKey Help With CCPA?

We've provided PCI DSS compliance solutions to hundreds of companies since our company's inception

Encryption

We address “pseudonymisation and encryption of personal data” through encryption and tokenization.

Privacy by Design

Application-level encryption is our solution to data protection by design, and by default.

Data Access and Consent

By using FIDO2 authentication, we provide guaranteed unambiguous consent.

Alteration of Data

Unauthorized alteration of data is easily detected with digital signatures.
SEE HOW STRONGKEY'S SOLUTIONS HELP COMPANIES ACCOMPLISH CCPA COMPLIANCE
DOWNLOAD OUR CCPA
SOLUTION DATA SHEET

What Makes Us Unique

Where can we clone more?

One day, after a troubling visit from the giant Catherine Clifford, Chloe leaves her house and sets out in search of three cosy sausages.

How do we use webflow?

One day, after a troubling visit from the giant Catherine Clifford, Chloe leaves her house and sets out in search of three cosy sausages.

Is Vlad a secret agent?

One day, after a troubling visit from the giant Catherine Clifford, Chloe leaves her house and sets out in search of three cosy sausages.

Did someone find Waldo?

One day, after a troubling visit from the giant Catherine Clifford, Chloe leaves her house and sets out in search of three cosy sausages.