Partner With People and Technology for Accelerated Compliance
Compliance with CCPA is critical to safeguarding your customers' personal data and protecting your business. Drata’s platform walks you through the process step-by-step, showing you how to use our CCPA controls, requirements, and policies.
Gain peace of mind knowing that Drata is continuously monitoring your controls 24/7. Paired with our internal security and compliance experts, you’ll be covered along your CCPA journey. With 75+ integrations, connect to your tech stack in minutes to power automation that reduces time-consuming, manual compliance tasks.
Take Advantage of Your Existing Framework Controls
Monitor Security Continuously to Reduce Risk
Under CCPA, you need to implement, document, and monitor security controls to protect consumers’ privacy.
With Drata’s 24/7 monitoring, you streamline security activities by using pre-set workflows around automated monitoring, evidence collection, asset and personnel tracking, and access control. Since everything's documented in Drata, you eliminate manual processes—like reviewing dozens of systems—to reduce your CCPA compliance workload.
What's Included With CCPA
The all-in-one solution for CCPA compliance. Enabling you to have more visibility into CCPA (and other platforms).
CCPA Control Library
Drata’s CCPA Control Library, templated policies, and custom control feature streamline the compliance process.
Information Security Policies
Drata’s information security policies are CCPA compliant so you can check off creating new policies from your to-do list.
Framework Control Overlap
Cut duplicate effort by taking advantage of controls from other frameworks that overlap with CCPA controls.
Security Posture Visibility
View all frameworks inside of Drata's Readiness Dashboard so you can see your progress and status at any time.
Know your assets. With Drata’s automated inventory, you know all physical and virtual assets across your company.
Support and Live Chat
Drata’s support team consists of compliance experts and former auditors. Our experts are a click away.
The Latest Resources
Frequently Asked Questions About CCPA
I am not in California, do I need to comply with CCPA?
Anyone who meets the following criteria needs to comply with CCPA:
Revenue over 25 million
Buy, receiving, sell personal information of 50 thousand or more California residents, households, or devices
Derive 50% of revenue by selling that information
What is personal information?
Personal information includes: name, social security number, email, records of products purchased, fingerprints, etc.
Does Drata cover the upcoming CPRA Framework?
CPRA (California Privacy Rights Act) will go into effect in 2023. The CPRA framework will be available in Drata prior to the act going into effect and customers that purchased CCPA will be transitioned from CCPA to CPRA at that time.
Automate Your Journey
Drata's platform experience is designed by security and compliance experts so you don't have to be one.