DataGrail, a leading privacy management platform, released the results from its first ever State of CCPA report, a Look Back at Early Trends Shaping the Privacy Landscape. The research shows that organizations who plan on manually processing CCPA data subject requests (DSRs) or data subject access requests will spend between $140k – $275k per million consumer records they have in their systems.
Read More: Trax Moves Closer To Its Vision Of Digitizing Physical Retail With Qopius Acquisition
The California Consumer Protection Act (CCPA) went into effect on January 1, 2020, giving consumers the right to know the data collected about them, to delete data about them, and ensure their data is not sold to third-parties. DataGrail offers a platform that automates the process of fulfilling these requests, giving it unique insight into the number of requests processed by companies. To that end, it analyzed the number of requests that went across its platform in Q1 2020 to understand how CCPA will impact organizations in the long-run. The early learnings from the first few months of CCPA should help businesses plan and predict the future of privacy regulation.
Highlights include:
- Privacy headlines (and COVID-related emails) in March & April likely drove an increase of CCPA privacy requests.
- B2C companies should prepare to process approximately 100 to 194 requests per million consumer records each year.
- Processing CCPA privacy requests will likely cost B2C companies $140,000 to $275,000 per one million consumer records, if done manually.
- January 2020 saw a surge of privacy requests, most likely due to the law going into effect and privacy policy updates.
- Deletion requests were the most popular requests (40%) in Q1 2020, followed by DNS (33%), and access requests (27%).
- Do Not Sell (DNS) requests will likely become the most dominant privacy request after analyzing early trending data.
Read More: 7 SalesTech Tools To Fall In Love With!
Looking forward to the remainder of 2020, DataGrail expects the number of CCPA privacy requests to stabilize around the February and March numbers (8 requests per million consumer records). However, as privacy related issues make headlines or a company updates their privacy policy, organizations should expect a surge of requests. For example, in April, the number of requests has been trending higher, most likely due to the number of COVID-related emails sent, and headlines about the privacy of remote work and conferencing apps. In July and August we may see a surge once again as CCPA enforcement begins on July 1, 2020.
Read More: Rising E-Commerce Activities Will Be The Key Driver For Global Cyber Security Market Growth