Compliance
NDPA
The Nebraska Data Privacy Act (NDPA) is the state’s comprehensive consumer data privacy bill that provides data protection for Nebraska residents.
Cassie helps you achieve compliance without you having to compromise your business goals.
What is the Nebraska Data Privacy Act (NDPA)?
The NDPA applies to almost every company processing the personal data of Nebraska residents, and while “small businesses” only have one requirement, other businesses will face many obligations regarding how they process personal data.
Signed into law on April 17, 2024, and effective from January 1, 2025, the NDPA imposes obligations on businesses operating in Nebraska or selling products or services to its residents. It grants consumers rights to access, correct, delete, and opt-out of the sale of their personal data, and requires businesses to provide clear privacy notices and maintain reasonable data security practices.
Does your business need NDPA compliance?
The Data Privacy Act applies to a person that:
- Conducts business in Nebraska or produces a product or service consumed by Nebraska residents,
- Processes or sells personal data, and
- Is not a small business as determined under the federal Small Business Act
The NDPA does not apply to:
- State agencies
- Businesses subject to the Gramm-Leach-Bliley Act
- Covered entities and business associates under the Health Insurance Portability and Accountability Act (HIPAA)
- Nonprofits
- Higher education institutions
- Utilities
Why choose Cassie?
Most consent management providers offer templated solutions so that you can ensure compliance. This might sound good and exactly what you’re after, but you’ll have to sacrifice your business goals to achieve this.
With Cassie’s CPM you can be confident in knowing that you’ll be compliant with NDPA and other relevant regulations without having to jeopardize business aims and objectives. As well as achieving compliance, you’ll be able to build trust and loyalty with your customers by offering transparency.
Protect individual privacy
Allow end users to take control of their preferences with granular consent controls enforced across domains, devices and platforms
Avoid fines and brand damage
Cassie enables organizations to meet the complex requirements of APP and mitigate risk with a robust framework for managing consent, avoiding severe penalties and reputational damage
Pass audit inspections
Be prepared for compliance audits with demonstrable tracking and complete history logs, alongside advanced RoPA and DSAR modules to improve efficiencies and assess risk
Ensure data security
Cassie is SOC 2 certified, assuring organization’s data is safeguarded from unauthorized access or breaches with industry-leading encryption protocols and practices
Centralized source of truth
Use Cassie to honor and enforce consent data via APIs and integrations at high volume, in real-time for APP compliance across your tech stack (CRMs, CMS, marketing automation tools, BI tools)
Complex consent made simple
For every consent captured, Cassie can store unlimited key value pairs of additional information against those consents to unlock scalable, granular consent management
