Did you know that both the CCPA and GDPR require companies and their vendors sign acknowledgments of how personal data will be processed and protected, beyond the standard contract?
DPSA CAN HELP.
Both the CCPA and GDPR require companies and their vendors to sign acknowledgments indicating how personal data will be processed and protected. This signed Data Processing Addendum is a critical compliance piece of the CCPA, confirming the vendor is a “Service Provider” receiving personal information as a Transfer not Sale.
You do not need a law firm to draft your Data Processing Addendum, but you do need a firm with the experience to know exactly what must be included for the Data Processing Addendum to achieve its objectives. DPSA has the expertise to help. Our Data Processing Addendum Templates are available for both GDPR and CCPA compliance, either individually or together.