Join the hundreds of companies using Secureframe

Powerful security that provides regulatory clarity

icon

Connect

and monitor your tech stack through our integrations

icon

Identify

and fix operational and technical deviations

icon

Mitigate

your organization’s regulatory, legal, and financial risk

icon

Assure

your California end-users that their private data is safe

CCPA: California's landmark consumer privacy law

The California Consumer Privacy Act (CCPA) requires for-profit organizations that target or collect the personal data of California residents to comply with various privacy requirements and maintain certain security controls. Organizations that fail to comply with CCPA can be fined up to $2,500 per unintentional violation and $7,500 per intentional violation.

Organizational CCPA Compliance involves:

  • Providing California residents a way to know if their personal data has been collected 
  • Allowing California residents to opt-out of personal information sales, request disclosure of their collected personal information in a portable format, and request deletion of their personal data
  • Documenting and tracking personal information collection, processing, and sharing activities
  • Implementing security controls and policies to safeguard personal information
  • Assessing CCPA compliance for vendors that receive personal information
  • Training personnel with access to personal information on CCPA requirements
compliance-involves

How it works

CCPA contains numerous privacy requirements, obscure security requirements, and several amendments — often prone to misinterpretation due to inherent legal jargon. We simplify the CCPA compliance processes into simple, clear-cut steps, saving you hours while giving California lawmakers and residents world-class assurance. 

check-icon

Meet your dedicated account manager

check-icon

Scan and secure your cloud infrastructure

check-icon

Build your CCPA artifact repository

check-icon

Train your personnel on security and CCPA privacy requirements

check-icon

Easily onboard employees

check-icon

Complete your CCPA readiness assessment and optional audit

check-icon

Continually maintain CCPA compliance

Interested in CCPA compliance?

Scan and secure your cloud infrastructure

We connect with, monitor, and help provision your cloud infrastructure to be compliant with CCPA requirements. Plus, no need to install infrastructure agents — we scan through read-only access.

Key Features

  • Monitors over 150 cloud services within AWS, Google Cloud, Azure, and others
  • Scans for major compliance frameworks, including CCPA, SOC 2, ISO 27001, HIPAA, PCI DSS, and GDPR
  • Reports control failures and provides guidance for remediation
feature-image

Build your CCPA artifact repository

We help you design CCPA security policies that are right for your business. Select from our library of policies, adapt them for your organization, and publish them to your personnel for review — all through our portal.

Key Features

  • Dozens of policies developed and vetted by in-house security experts and auditors designed to withstand regulatory inspection
  • Easily publish policies for your personnel to review through our portal
feature-image

Easily onboard your personnel

Our workflows streamline the onboarding process for your employees. Easily track that your team has completed background checks, security awareness training, and acceptance of security policies through a progress dashboard.

Key Features

  • Employee and contractor self-serve onboarding via an automated workflow
  • Personnel progress reports across key security and compliance areas
  • Personnel access tracking to gain visibility into who has access to what
feature-image

Train personnel on security and CCPA privacy requirements

CCPA training can be expensive and complex. We’ve built our own up-to-date CCPA training series for personnel interfacing with consumer privacy inquiries and those responsible for maintaining organizational CCPA compliance.

Key Features

  • Complete complex regulatory training within 30 minutes 
  • Educate your consumer-facing teams on how to ingest, track, and respond to nuanced end-user privacy inquiries
  • Train departments responsible for maintaining CCPA compliance on their mandated responsibilities
feature-image

Complete your CCPA readiness assessment

Be confident in your CCPA compliance posture with our readiness report. You can also choose to pursue third-party validation from auditors within our network for added assurance.

Key Features

  • Track your progress towards CCPA compliance via our proprietary readiness report that has been validated by in-house security experts and auditors
  • Choose to invite one of our audit partners into your Secureframe instance for additional third-party validation
feature-image

Continually maintain CCPA compliance

We help you maintain compliance by continuously checking security control health pertaining to CCPA’s obscure security requirements. Stay secure with real-time alerts on non-conformities throughout your tech stack so you can fix them quickly.

Key Features

  • Automatic security control assessment from 40+ integrations
  • Seamless evidence collection and review processes for readiness assessments and external auditor validations
feature-image

Interested in CCPA compliance?