CCPA implementation of controls.

TheFORCETheFORCE Senior MemberPosts: 2,297Member ■■■■■■■■□□
Anyone that is currently working on CCPA Compliance has any feedback on what are the technical processes they started to implement or how they did it?

Comments

  • catscapscatscaps GSEC, GCCC, CISSP, CEH, VCP, MCP, and more Posts: 14Member ■■■□□□□□□□
    We lightly touched GDPR implementation, but with CCPA more closely impacting us, we have updated our digital destruction policy and implemented automation to data destruction across various on-prem and cloud-based data. We are still investigating how to validate requests. We fall under GBLA, so we need to ensure we get rid of data we don't need, as soon as we are allowed to. It is a major culture shift, before it was save everything, never delete....just in case. 
    At least for the first year, depending on the quantity of requests, it will be a rather manual process for us. We assume the request should be low.

    Where are you in the process?
Sign In or Register to comment.