The Colorado Privacy Act is one of 5 U.S. data privacy laws to go into effect in 2023, becoming effective from July 1st. Its primary focus is to protect consumers in their online activities. It will give them certain rights over their personal data, including making inquiries or requests to data controllers or data processors about it, as well as giving them the right to opt out of the processing of their data.
Although there are lots of similarities with the CPA and other US data privacy laws, there are differences between them that can make compliance more challenging for organizations that are subject to more than one of these laws. Cassie’s consent management platform allows your business to have confidence in knowing that you’re achieving compliance under U.S. privacy laws without needing to sacrifice any business goals.
Will your business need CPA compliance?
CPA will apply to any entity that conducts business in the state of Colorado or who offers products and or services to its residents. These entities (including non-profit organizations) are responsible for adhering to CPA if they target more than 100,000 consumers annually in Colorado, or if they profit from selling the personal data of 25,000 or more people residing in Colorado.
Unlike other U.S. privacy laws, Colorado’s privacy law does not have an annual revenue threshold which can measure whether or not an entity must adhere to its regulations. Other privacy laws state that businesses must adhere to regulations when a certain percentage of their revenue stems from the selling data – this is not the case with CPA.
How can we help you stay compliant with US privacy laws?
This downloadable guide allows you to get an understanding behind the fundamentals of Cassie’s consent management platform.
Ideal for supporting conversations with stakeholders, our guide covers: