🇺🇸 Live Workplace Safety & WHS/OHS

CCPA/CPRA

Grants California consumers rights over their personal information, including the right to know, delete, and opt out of the sale or sharing of their data. Applies to businesses meeting specified revenue, data volume, or data sale thresholds.

View official source document

46

Rules extracted

572

Obligations decomposed

12.4x

Avg obligations per rule

🇺🇸 United States

Jurisdiction

What AuditDSS covers

Source

1

Regulation

Extracted

46

Rules

Decomposed

572

Obligations

12.4x

Decomposition ratio

Each rule is decomposed into an average of 12.4 atomic obligations — the smallest testable units that can be independently violated.

Fully extracted & scored

All 572 obligations have been decomposed, titled, risk-scored, and embedded for semantic matching.

Risk scoring

Every obligation in CCPA/CPRA is scored across independent risk dimensions:

W

Obligation Weight

How critical within the regulatory framework

L

Violation Likelihood

How often breached in practice

E

Enforcement Evidence

Regulator enforcement history and penalties

C

Cascade Dependency

How many obligations depend on this one

Regulatory details

Full title
CCPA/CPRA
Regulatory body
California Attorney General / California Privacy Protection Agency
Jurisdiction
🇺🇸 United States
Document type
legislation
Effective date
January 1, 2020
Issuing authority
California Legislature
Industry
Workplace Safety & WHS/OHS
Official source
View source document ↗

Who this applies to

businesses collecting California residents' personal dataservice providerscontractorsthird parties

Key requirements

  • right to know
  • right to delete
  • right to opt-out of sale
  • right to correct
  • right to limit sensitive data use
  • non-discrimination
  • privacy notice requirements

Frequently asked questions about CCPA/CPRA

What is CCPA/CPRA?
Grants California consumers rights over their personal information, including the right to know, delete, and opt out of the sale or sharing of their data. Applies to businesses meeting specified revenue, data volume, or data sale thresholds.

Who does CCPA/CPRA apply to?
CCPA/CPRA applies to businesses collecting California residents' personal data, service providers, contractors, third parties.

How many obligations does CCPA/CPRA contain?
AuditDSS has decomposed CCPA/CPRA into 572 atomic obligations from 46 rules. Each obligation is independently testable and risk-scored.

What are the key requirements of CCPA/CPRA?
The key requirements include: right to know, right to delete, right to opt-out of sale, right to correct, right to limit sensitive data use, non-discrimination, privacy notice requirements.

How can I assess my CCPA/CPRA compliance?
Upload your compliance policy to AuditDSS. The platform maps your document against all 572 CCPA/CPRA obligations using deterministic AI scoring — not checklists or LLM summaries. You get a risk-scored gap analysis showing exactly which obligations are covered, partially covered, or missing.

Which jurisdiction enforces CCPA/CPRA?
CCPA/CPRA is enforced in United States by California Attorney General / California Privacy Protection Agency.

When did CCPA/CPRA come into effect?
CCPA/CPRA became effective on January 1, 2020.

What industry does CCPA/CPRA apply to?
CCPA/CPRA is primarily relevant to the Workplace Safety & WHS/OHS industry. AuditDSS covers 45 regulations in this industry sector.

Build a CCPA/CPRA compliance pack

Don't have a compliance policy yet? AuditDSS generates a complete compliance pack for CCPA/CPRA — alone or combined with other regulations your business needs. Every clause is mapped to specific obligations.

Policy

High-level commitments and governance framework covering CCPA/CPRA requirements.

Procedures

Step-by-step operational procedures to implement each policy commitment.

Forms & checklists

Ready-to-use forms, registers, and checklists for day-to-day compliance operations.

Multi-regulation

Combine CCPA/CPRA with other regulations into a single unified compliance pack for your business.

Build CCPA/CPRA compliance pack

Already have a policy? Assess it against CCPA/CPRA

1

Upload your document

Upload your compliance policy, program manual, or operational document. AuditDSS accepts any text-based document.

2

AI maps against 572 obligations

Your document is scored against every obligation in CCPA/CPRA. Each claim is mapped to the obligation tree and evaluated for coverage.

3

Risk-scored gap report

Receive every gap ranked by risk priority with remediation guidance, enforcement evidence, and cascade impact analysis.

Related regulations in Workplace Safety & WHS/OHS

🇦🇺 Live

AU Climate Disclosure

10 rules, 52 obligations
🇦🇺 Live

Fair Work Act 2009

16 rules, 260 obligations
🇦🇺 Live

Modern Slavery Act 2018

9 rules, 135 obligations
🇦🇺 Live

Privacy Act 1988

29 rules, 203 obligations
🇦🇺 Live

Model WHS Act

10 rules, 41 obligations
🇺🇸 Live

EPA Lead RRP

47 rules, 1,220 obligations
🇺🇸 Live

ERISA Fiduciary

26 rules, 920 obligations
🇪🇺 Live

CSRD

20 rules, 151 obligations

Assess your CCPA/CPRA compliance

Upload your document and get a risk-scored gap analysis against 572 CCPA/CPRA obligations in under 5 minutes.

Start assessment Browse all regulations