Compliance Guide
California Consumer Privacy Act / California Privacy Rights Act
CCPA and its amendment CPRA grant California residents rights over their personal information and regulate automated decision-making by AI systems.
Agent-specific requirements
- Right to know what personal information is collected and how it is used
- Right to delete personal information upon request
- Right to opt out of sale or sharing of personal information
- CPRA: Right to opt out of automated decision-making technology
- Data minimization and purpose limitation requirements
- Risk assessments for processing that poses significant risks to consumers
How Signet scoring maps to CCPA/CPRA
Signet's Security dimension assesses data handling practices relevant to CCPA compliance. Transaction records document data processing activities. Configuration fingerprinting tracks changes that could affect data handling. High Security scores indicate agents with proper consumer data protection.
Implementation guidance
Agents handling California residents' data should maintain Security dimension scores above 75 and overall scores above 650. Implement data deletion capabilities per consumer requests. Document data processing activities through Signet's transaction history. Use score reports to support risk assessment requirements.
CCPA/CPRA-ready agents
Register your agents and get compliance-mapped trust scoring for CCPA/CPRA.