How Corodata Helps Businesses Comply With CPRA’s Data Subject Access Requests
Many ways that Corodata already secures and manages files also make it easier to reply to Data Subject Access Requests (DSARs) and comply with the California Privacy Rights Act (CPRA).
Starting January 1, 2023, businesses are legally obligated to respond to consumers who send your company a Data Subject Access Request (DSAR) asking you to explain (1) what information you have about them, (2) why you collected it, and (3) how you’re using it; (4) correct inaccuracies in it; and (5) limit your ability to use or disclose it.
To help businesses prepare to comply with the California Privacy Act (CPRA), we’ve provided answers to some common questions including, an interactive checklist. Taking your preparation even further, following our secure records management tools and practices will help make it quicker and easier to fulfill these requests.
Tracking What, Why, How, and Where. Plus Corrections.
Providing Privacy Notice Information
Along with updating your privacy notice to reflect consumers’ expanded rights under the CPRA, you’ll also need to update your data collection notice to include proof that your company meets the legal requirements for document storage, management, and retention.
Corodata provides the following tools to help:
Many Layers of Security
Our six-layer secure records management systems keep your business in full compliance.
For starters, we require customers to fill out a security form indicating who has access to company records and who can authorize us to retrieve and destroy them, down to the type of information.
For particularly susceptible records, we can seal boxes using uniquely numbered tags that are entered in our database and require you to unseal them to retrieve any document inside.
Corodata employees, not third parties, provide all services. We provide them with regular training on best practices for handling sensitive information and cybersecurity to prevent unauthorized people from requesting or accessing records. In addition, all have passed a background check for at least seven years.
Need help staying in compliance?
With Corodata as your records management service provider, you can prove that files containing consumers’ personally identifiable information (PII) are secure from the time it enters storage to the time it’s destroyed. Properly storing records ensures that you’re compliant with all RIM laws, not just CPRA.Yes, we need help