Compliance
CDPA
CDPA (Virginia Consumer Data Protection Act) will dramatically improve the lives of Virginia citizens, it’ll give them stronger data rights and more protection.
Cassie will be able to help you achieve compliance without you having to compromise your business goals.
What is CDPA?
The VCDPA’s primary objective is to protect individuals’ privacy as well as inform them whether their data is being processed.
Borrowing heavily from General Data Protection Regulation (GDPR), CDPA’s main objective is to ensure that businesses obtain affirmative consent before collecting or processing sensitive personal data.
The Attorney General of Virginia define personal data as meaning “any information that is linked or reasonably linkable to a Virginia resident. It does not include publicly available information such as government-held public records”. Protected health data under the HIPAA as well as a number of other pieces of data are exempt from the CDPA.
Consumers have the right to submit a request to controllers to ask how data is being used, to delete data and opt-out, as well as requesting copies of the personal information that is being collected by an organization. Businesses must respond to these requests within 45 days of the request being made or face fines of up to $7500 per violation.
Choose Cassie for:
High volume, fast response querying
Cassie can process up to 50,000 transactions per second, which means however large your operation is you’ve got peace of mind. Our largest client has 400,000 data subjects.
Deeper customer insight
Cassie’s Customer service portal will let you capture up to 13 fields. You’ll be able to learn more about your customers in order to create personalized customer journeys.
Pass audit inspections
Be prepared for compliance audits with demonstrable tracking and complete history logs, alongside advanced RoPA and DSAR modules to improve efficiencies and assess risk
Ensure data security
Cassie is SOC 2 certified, assuring organization’s data is safeguarded from unauthorized access or breaches with industry-leading encryption protocols and practices
Centralized source of truth
Use Cassie to honor and enforce consent data via APIs and integrations at high volume, in real-time for CDPA compliance across your tech stack (CRMs, marketing automation tools, BI tools)
Complex consent made simple
For every consent captured, Cassie can store unlimited key value pairs of additional information against those consents to unlock scalable, granular consent management