Your first and last call for IT solutions to help you secure, optimize and innovate your business.
California Consumer Privacy Act
The CCPA is a state statute intended to enhance privacy rights and consumer protection for residents of the state of California. Under CCPA, California residents have the right to know which data companies store of them and with which third parties that data is shared. The CCPA affects any business that collects or stores data about California residents and will likely set a precedent for nationwide privacy protection in the United States. In addition, the CCPA allows consumers to sue companies if the privacy guidelines are violated, even if there is no breach. Columbia Advisory Group provides consulting services to assist companies on complying with the CCPA requirements.
Columbia Advisory Group provides Managed Compliance Services for CCPA that focus on the three main areas of the law – individual rights, data security, and service providers – and each of the nine sections of the law.
RIGHT TO KNOW: Businesses must disclose the what data is being collected/sold, how it’s being collected/sold, and for what reason upon request.
RIGHT TO DELETE: Businesses must delete any personal information upon request.
RIGHT TO OPT-OUT OF SALE: Businesses must allow residents to opt out of the sale of their data and must not sell the personal information of a consumer under 16 years of age without authorization.
RIGHT TO NON-DISCRIMINATION: Businesses must not discriminate against consumers who choose to exercise any of the above. For example, businesses can’t deny services or charge different rates because a consumer does not want their information being shared.
As certified cybersecurity & compliance experts (CISSP, CIA, CISA, CEH, PMP, etc.), CCPA implementation is one of our focuses. Columbia Advisory Group continuously implements CCPA controls for organizations throughout the year and helps them maintain compliance moving forward.
Columbia Advisory Group’s compliance portal helps streamline continuous compliance and security control effectiveness tracking for organizations before, during, and after assessments.
Columbia Advisory Group’s CCPA program provides your organization a consolidated way to manage all CCPA requirements. Our experienced professionals use state-of-the-art data security software combined with data management solutions to search and index existing systems for all personally identifiable information. This allows for discovery, classification, and protection of sensitive data directly at the source.
The Columbia Advisory Group compliance implementation process includes:
Assess the current risk and compliance adherence level of the organization.
Advise the organization of changes that must be completed in order to reach compliance.
Implement full policies and processes for the organization to be able reach compliance.
Advocate on behalf of the organization with auditors/assessors as necessary to ensure all processes and documentation are delivered in a timely manner.
Manage the compliance efforts of the organization to promote continuous compliance on an ongoing basis.
Does my company have to comply with CCPA?
The California Consumer Privacy Act applies to for-profit businesses and other legal entities that collect and determine the use of consumers’ personal information, and that also meet at least one of the following:
Has annual gross revenues over $25,000,000
Transacts the personal information of 50,000+ consumers, households, or devices
Derives at least 50% of annual revenues from selling consumers’ personal information
Columbia Advisory group delivers unified security & compliance reporting that allows your business to track its readiness against any security or risk-based standard in real time.
Ready to Talk with an Expert?
Learn how we align our exceptional experience as a leading IT Managed Service Provider to align governance, readiness and compliance for your business.
COMPLEX ERP SOLUTION SUPPORTS STUDENT RECRUITMENT AND RETENTION
Columbia Advisory Group Audio/Visual Services Saves Texas A&M University System campuses over $3.2 million during A/V redesign
Implementing Hybrid Learning Systems in a Post-COVID World
Making The Case for Virtual Chief Information Security Officers in Education
The Importance of a Unified Technology Stack for Higher Education Institutions
Enabling IT Transformation for Non-Profit Healthcare Entity
Tarleton State University: Interim CIO Provides Strategic IT Roadmap
Electronic Health Records Implementation for a Non-Profit Skilled Nursing Facility
Embracing the Future: Tarleton State University’s Data-Driven Transformation
Navigating an HVAC Division Carve-Out for a Large Publicly Traded Company
Strategic Operational Cost Reduction in a Top-Tier Global Financial Institution