Newsroom
Compliance Blog tackles CCPA requirements for CUs
NAFCU Senior Regulatory Compliance Counsel Elizabeth LaBerge details the requirements and proposed regulations of the California Consumer Privacy Act (CCPA) in a new post on the Compliance Blog. The CCPA, which was enacted in 2018, is set to take effect Jan. 1, 2020.
"After the CCPA was passed, at least twenty amendments to address ambiguities, technical problems, drafting errors and substantive changes were considered before the California Legislature went into recess for the last time in 2019," notes LaBerge. "Eight of these amendments were passed."
NAFCU, in a joint letter with the United States Chamber of Commerce and other organizations representing every sector of the American economy, earlier this year urged the California governor, attorney general and members of the California state senate and assembly to delay the effective date of the CCPA by two years.
In the blog, LaBerge highlights the requirements that credit unions would likely be subject to under the CCPA, if they meet the threshold requirements. LaBerge also discusses the proposed regulations, which remain open for comment, highlighting that they do not include specific implementing rules for every piece of the CCPA. NAFCU will submit written comments on the proposed regulations ahead of the Dec. 6 deadline.
A number of congressional hearings have reviewed efforts to establish consumer data privacy standards as lawmakers consider national data security and privacy laws, and NAFCU has previously urged Congress to create uniform standards to prevent confusion stemming from a patchwork of different state laws.
Credit unions doing business in California may want to start preparing now to be in compliance by the effective date, as no further legislative clarification on the act is expected this year.
The association has multiple resources available to help credit unions prepare, including a webinar on CCPA and the future of privacy laws available on-demand. NAFCU members can also access a previous edition of the NAFCU Compliance Monitor on the substantive requirements of the GDPR and how they differ from existing U.S. mandates.
Share This
Related Resources
Resiliency In Your Incident Response Plan
Cybersecurity
preferred partner
DefenseStorm
Blog Post
The Bottom Line on Insurance Tracking and Collateral Protection
Strategy
preferred partner
Allied Solutions
Blog Post
Add to Calendar 2024-04-15 09:00:00 2024-04-15 09:00:00 Mergers and Acquisitions: Unifying Two Different Executive Total Compensation and Benefits Programs Listen On: Key Takeaways: [03:50] With the merger of a smaller credit union into a larger one you are really only dealing with integrating staff into the larger credit union. [05:53] When working with a merger of equals we start with a deep dive into the executive compensation and benefits of each organization. [09:09] If your current executive benefits provider doesn’t conduct regular plan evaluations, consider having a plan audit anyway. [13:46] Don’t overpay for these things if you don’t have to. When you have more options available that means the cost is more appropriate. [17:11] It is in a unified organization’s best interest to do tier timelines where we look at your top executives who are critical to the unified organization’s success today and then slowly add in the next levels. Web NAFCU digital@nafcu.org America/New_York public
Mergers and Acquisitions: Unifying Two Different Executive Total Compensation and Benefits Programs
preferred partner
Gallagher
Podcast
Add to Calendar 2024-04-11 14:00:00 2024-04-11 14:00:00 Regulation E: Impacts Across Your Institution Dive into regulatory excellence with, Regulation E: Impacts Across Your Institution. This webinar is tailored to empower you with the knowledge and strategies necessary to effectively implement the Electronic Funds Transfer Act (EFTA) and Regulation E within your operations. You’ll explore how to apply Regulation E across various business areas to ensure compliance obligations are met with precision. Key Takeaways Learn the basics of EFTA and Regulation E Understand how to apply Regulation E at your organization to detect processes and transactions that require Regulation E compliance Discover how Regulation E may apply to a large breath of areas in your institutions and functions for which you may rely on third-party vendors Review recent enforcement activity for non-compliance with EFTA and Regulation E Register Now $295 Members | $395 Nonmembers(Additional $50 for USB)One registration gives your entire team access to the live webinar and on-demand recording until April 11, 2025Go to the Online Training Center to access the webinar after purchase » Who Should Attend NCCOs NCRMs Compliance and risk titles Education Credits NCCOs will receive 1.0 CEUs for participating in this webinar NCRMs will recieve 1.0 CEUs for participating in this webinar Web NAFCU digital@nafcu.org America/New_York public
Regulation E: Impacts Across Your Institution
Credits: NCCO, NCRM
Webinar
Get daily updates.
Subscribe to NAFCU today.