Comparing Privacy Laws: GDPR vs. CCPA & CPRA
Create an account
Join our community for free to access exclusive whitepapers, reports, and regulatory information.
Use our latest benchmarking report to learn more about key differences and similarities between landmark legislation in the EU and California.
- Explore the comprehensive scope, key definitions, and legal bases of the GDPR, CCPA, and CPRA
- Understand the obligations for controllers and processors in the EU and California
- Learn about the enforcement mechanisms and individuals' rights across jurisdictions
Comparing the GDPR with the CCPA and the CPRA
The General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA) have shaped the modern privacy landscape as we know it. Each aims to protect personal data, impose strict requirements on businesses that process personal data, and provide rights to individuals concerning the use of their personal information.
The GDPR is one of the most comprehensive data protection laws in the world and has been used by many countries as inspiration in establishing their own similar laws. In the US, the CCPA is one of the most significant and strictest privacy laws, with a vast territorial application due to California being one of the largest global economies. On November 4, 2020, the California Privacy Rights Act (CPRA) amended and extended many of the CCPA’s provisions to establish even stricter requirements for businesses that fall under the law’s scope.
This guide, co-authored by Newmeyer & Dillion LLP, aims to help you understand and compare the relevant provisions of the CPRA and CCPA against the GDPR.
