Having provided comparisons of the scope, individual rights, business obligations and enforcement provisions of the GDPR, CCPA and CPRA, and having provided nitty-gritty detailed GDPR vs. CCPA, GDPR vs. CPRA and CCPA vs. CPRA comparisons, let’s put a fork in this. So, here is my final posting on this topic — an executive summary of the three privacy laws. If you want more context behind a given cell, then check out the cheat sheets for GDPR, CCPA and CPRA.


[…] previously blogged on detail comparisons of GDPR vs. CPRA and CPRA vs. CCPA, but if you look at my executive summary comparison, a strong case could be made that CPRA exceeds the GDPR in certain areas (e.g. mandating […]
LikeLike
This is a great comparison. One thing I think might be helpful is to add some lines under Scope for the thresholds for compliance i.e. CCPA vs CPRA annual revenue >$25M, 50k consumers or households vs 100k, received vs shared, etc.
LikeLike
Thanks for the feedback. Unfortunately I am not as well versed in Word Press to create a nicely formatted table that allowed individual cells to be drilled down upon.. I did above the table say “see the nitty gritty details for more details”. The specific differences between GDPR and CCPA and CPRA re: definition of controllers and businesses can be found at https://tomkemp.blog/2020/05/28/comparing-scope-gdpr-vs-ccpa-vs-cpra/
LikeLike
[…] residents a bunch of consumer rights and enforcement mechanisms. And CPRA gets California on par with the gold standard of privacy legislation, Europe’s General Data Protection Regulation …. But it would be great to have more help for consumers in letting them stop the sale of […]
LikeLike
[…] Here is how these Top 12 map to my executive summary of GDPR vs. CCPA vs. CPRA. […]
LikeLike
[…] GDPR, CCPA and CPRA — since late last year, and have done extensive comparison of the two, from summary to nitty-gritty detail analysis. Based on months of privacy law analysis combined with taking […]
LikeLike
[…] behind the CPRA made it very clear that the model for the CPRA is the GDPR. Here is how the CCPA and GDPR compare at a summary level and at a nitty-gritty level. The GDPR is has been in place since 2018, so there is plenty of […]
LikeLike
[…] mind, CPRA does not make the mistake of making perfect the enemy of good enough. It is about putting California on par with the gold standard of privacy laws — the EU’s General Data Protect…. The fact is, the CPRA significantly enhances privacy rights vis a vis CCPA, would be the […]
LikeLike
[…] mind, CPRA does not make the mistake of making perfect the enemy of good enough. It is about putting California on par with the gold standard of privacy laws — the EU’s General Data Protect…. The fact is, the CPRA significantly enhances privacy rights vis a vis CCPA, would be the […]
LikeLike
[…] system. It simply uses my well-trafficked exec summary table that I published as part of my executive summary of GDPR vs. CCPA vs. CPRA (also see below). Namely, I am going to grade based on percentage of green check marks […]
LikeLike
[…] CPRA was written with adequacy in mind as the CPRA clearly harmonizes California’s privacy law with the GDPR. As Consumer Watchdog wrote in its endorsement of Prop […]
LikeLike
[…] Executive Summary of GDPR vs CPRAm Tom Kemp […]
LikeLike