OSS

×
Services Case Studies Our Places
Information & Cloud Security
ISO 27017: 2015 - Cloud Security Implementation Information Security Management System NIST - Cyber Security Framework (CSF)
ITSM & IT Governance
IT Service Management System (SMS) IT Governance Integrated Management System
Risk Management
COSO Implementation Enterprises Risk Management (ERM)
Quality & Health Safety and Enviroment
Environment, Health & Safety Solution Quality Management System
Data & Information Privacy
General Data Protection Regulation (GDPR) California Consumer Privacy Act (CCPA) Privacy Information Management System (PIMS)
Business Continuity & Organization Controls
Business Continuity & Organization Controls System & Organization Control (SOC 1) Service Organization Control (SOC 2)
Software Engineering
Process Excellence Tech Excellence
Digital Transformation
TM Forum Digital Maturity Model (DMM) Business & Digital Transformation Strategy Digital Marketing Solutions Services
Quality Assurance
Software QA Consulting Ensuring Exceptional Software Quality Automated Testing for Mission-Critical Projects Quality Assurance Automation, Scaled
Software Development Life Cycle
Professional Software Consulting Our R&D Capabilities Embrace DevOps to Gain a Competitive Edge Enterprise-Grade Maintenance and Support Revitalizing Your Legacy Systems Project recovery at scale
First slide
other slide
other slide
other slide
other slide
other slide
Digital Transformation

Integration and leveraging of new and existing technologies, processes and competencies into the way business is done. Read More

Digital Strategy & Targets

Identifying the different ways technology can be leveraged to create value, categorized as external or internal opportunities. Read More

Customer Intelligence

Collecting and analyzing customer interaction data to gain insights about customer behavior. Read More

Digital Marketing

Marketing that uses electronic devices to convey promotional messaging and measure its impact. Read More

Five Trends in Risk Management to Watch in 2023: What You Need to Know.

Which major trends are we now observing in the risk management industry? In this article, we outline five trends and discuss how they will change risk management in 2023. Read More

Staying Afloat as a Healthcare Risk Management leader is one of the Best Things You can do

The process of detecting risks that could endanger a healthcare organization, its patients, personnel, or anybody else in the institution is known as risk management. Read More

Reach out to us in the nearest office.

Oman Office

Muscat

2nd Floor, Tamimah Building, Al Nahdah Road, Al Wattayah, PO Box 395, Muscat 118.
Muscat, Sultanate of Oman

Comming Soon
Comming Soon
Comming Soon

Follow Us

CCPA Implementation Overview

We have a structured methodology to determine and define internal processes to achieve, maintain and monitor CCPA compliance. We have a 6-phase Methodology to help you achieve successful compliance.

Definition – Personal information

CCPA defines personal information as information that identifies, relates to, describes, is reasonably capable of being associated with, or could reasonably be linked, directly or indirectly, with a particular consumer or household such as a real name, alias, postal address, unique personal identifier, online identifier Internet Protocol address, email address, account name, social security number, driver's license number, passport number, or other similar identifiers.

Applicable Criteria

The CCPA applies to any business, including any for-profit entity that collects consumers' personal data, which does business in California, and satisfies at least one of the following thresholds:

  • Has annual gross revenues in excess of $25 million;
  • Possesses the personal information of 50,000 or more consumers, households, or devices; or
  • Earns more than half of its annual revenue from selling consumers' personal information.

Fines

A fine up to $7,500 for each intentional violation and $2,500 for each unintentional violation (Cal. Civ. Code § 1798.155).

Project Phases.

We have a structured phase wise approach to determine the scope of information in scope, and help you comply the requirement.

PHASE I

Information flow assessment

This phase involves identification of information sources, and is processing infrastructure that involves personnel, technology, physical infrastructure.

PHASE II

Gap Analysis

This phase involves performing privacy impact assessment and security risk assessment to determine security and legal loopholes. Identified gaps are provided with detail recommendations.

PHASE III

Control Design and documentation

This phase involves our methodology that involves distribution security responsibility to internal stakeholders, with controls policies and transactions that ensures that CCPA is well embedded in the organization processes. This also includes nomination of a data protection officer and creating data protection office, for the organization, if necessary.

PHASE IV

Performance Tracking

This phase involves showcasing client with changes in a given period by providing change specific score of compliance between 0 -100% compliance.

PHASE V

Internal Audit

This phase involves verifying the governance system created for the organisation is well in place and ready to declare as CCPA compliant.

PHASE VI

Tracking

This phase involves tracking the client risks, and documentation on a weekly basis till all internal controls are adequately implemented.

At this stage the client has implemented the governance system in completeness. Management is expected to perform monthly/quarterly/annual planned tasks to keep ongoing compliance.

WhatsApp Us