9 Keys to CCPA Compliance with DSARs and Do Not Sell


Managing consumers’ data privacy requests is one of the most fundamental and most challenging requirements within the California Consumer Privacy Act (CCPA). As CCPA becomes operative, many businesses are expecting an influx of Data Subject Access Requests (DSARs) and requests to opt-out of the sale of data. Many worry their consumer-facing websites and back-end processes aren’t built for the scale and scope needed.

All data privacy requests from consumers must be managed efficiently and securely to avoid significant financial and business risk. Preparing for DSARs and opt-out requests under CCPA must be a collaborative effort among data privacy officers, information technology teams, and business leaders.

This eBook outlines key steps for successfully managing DSARs and Do Not Sell requests. You can use this framework to enable consumers to exercise their data privacy rights, guide how you select services and vendors and make choices about personal data you collect and use.

You’ll learn best practices to:

  • Convey just-in-time, transparent Privacy Notices
  • Receive, verify and process DSARs automatically
  • Share results with consumers
  • Manage consent and preferences
  • Demonstrate business results