CCPA Timeline & Checklist

The California Consumer Privacy Act went into effect
January 1, 2020. Below you'll find key dates related to the law,
and a free checklist to help you cover your privacy bases.


CCPA Timeline

June 28, 2018
CCPA signed into law

Passed by the California legislature and signed into law by the California Governor.

October 11, 2019
Amendments passed

Legislature passes amendments and they are signed into law by the California Governor.

January 1, 2020
CCPA went into effect

California residents have certain rights over the data and companies are required to treat data in certain ways.

July 1, 2020
Enforcement begins

Attorney General begins enforcing the CCPA.

November 3, 2020
CPRA is passed

California voters approve Proposition 24, voting to enact the California Privacy Rights Act. The CPRA will replace the CCPA when it goes into effect.

January 1, 2023
CPRA goes into effect

Businesses complying with the CCPA may need to take additional steps in order to comply with the new CPRA. The CPRA also creates the California Privacy Protection Agency. This agency will issue new regulations to interpret and enforce the CPRA. 

July 1, 2023
CPRA enforcement begins

California's Attorney General and the California Privacy Protection Agency will begin to enforce the new obligations of the CPRA on July 1, 2023.

CCPA Checklist

If your organization needs to comply with the CCPA
make sure you have the following solutions in place.



Assess what aspects of the law your organization is already complying with and what you have left to do.

Free assessment

Data Mapping

Map where and how personal information of California residents is collected, stored, transmitted, and sold.

More Info


Ensure contracts with organizations and individuals with whom you share personal information contain CCPA required terms.

More Info

Consumer Requests

Collect, track, and respond to requests from California residents to access or delete their personal information.

More Info

Opt Out Requests

Collect and track the names of consumers who do not want your organization to sell their personal information.

More Info

Policies and Procedure

Have policies and procedures in place for your organizations employees about CCPA requirements.

More Info

Privacy Disclosures

Disclose all CCPA required terms online. The privacy notice must be accessible from your organization’s homepage.

More Info


Inform your organization's employees about CCPA requirements or provide privacy training.

More Info

This timeline is informational only. It may not be suited for every organization and is not legal advice.
To receive specific advice on how to comply with the CCPA, please consult an attorney.

See how SixFifty can help you comply

Request a free demo with one of our privacy experts to see just how easy SixFifty makes compliance with the CCPA.