• menu close

    Thank you for your interest in a California Consumer Privacy Act (CCPA) Cyber Security Regulations Assessment.

    California passed a consumer privacy act that went into effect on January 1, 2020.

    Which businesses must comply with this law?

    • All companies that serve California residents and have at least $25 million in annual revenue.
    • Companies of any size that have personal data on at least 50,000 people or that derive more than half of their revenue from the sale of personal data.
    • Companies don't have to be based in California or have a physical presence there to fall under the law. They don't even have to be based in the United States.

    ePlus can perform a detailed security risk assessment geared specifically for these new cyber security requirements. This tiered assessment will:

    • Take a closer look at your identified risks
    • Assess the integrity of your information systems
    • Evaluate your existing controls
    • Propose mitigation

    The assessment delivers prioritized remediation recommendations for discovered compliance gaps, allowing your organization to plan and budget for necessary improvements, customized for client risk profile and classification.

    For more specific information about these new regulations, visit the State of CA DoJ site here.