Businesses should perform data mapping to find out what personal information they collect and for what purposes, revise their website privacy policies, implement data security safeguards, review vendor agreements, create new procedures to respond to consumer requests for access to, correction, or deletion of data, purchase cybersecurity insurance, and take other activities necessary to comply with the CCPA/ CPRA and other state data privacy laws as well as the GDPR if personal data of EU residents is collected. At the end of this Guide, we offer best practices and a list of sources and references for further information on these issues. We welcome your comments on this Guide and any suggestions you might have for data privacy and security issues to cover in future editions. Finally, I would like to thank Jesse Berg, Alexandra Bass, Bushra Samimi, and Caitlin Gehlen at Lathrop GPM for their support in preparing this version of A Legal Guide To Privacy and Data Security. Michael R. Cohen, CIPP/US, CIPP/E, CIPM, FIP, PLS Lathrop GPM 2026
x
Made with FlippingBook - Online Brochure Maker