The CCPA (California Consumer Privacy Act) is a state-oriented data privacy act that regulates how companies from all over the world are allowed to pursue the personal information (PI) of Californian residents. The CCPA got effective from the date January 1, 2020. It is the first act of its kind in the United States that is consumer-oriented and secures their PI.
CCPA is applicable for any business in the world that trades in the personal information of more than 50,000 Californian citizens annually or has an annual gross revenue crossing $25 million, or make more than 50 percent of its annual revenue from trading in the personal information of Californian residents. Sale of Personal Information is defined in the CCPA as “selling, renting, releasing, disseminating, making available, transferring, or otherwise interacting orally, in writing, or by electronic or other means, a customer’s personal information by one company to another business or a third party for monetary or other valuable consideration.” (1798.140.t1).
For instance, if a company shares branding with other business (i.e., share name, service mark or a trademark) under the CCPA, the other company will act as a subject to comply with CCPA.
Under the CCPA, California residents (“customers”) are entitled with the power to opt-out of having their information sold to third parties, the power to request disclosure of data already stored, and the right to request deletion or removal of data collected.
Also, Californian residents have the right to be informed and the right to equal services and price (i.e., cannot be discriminated based on their choice to exercise their rights). If the company cannot abide by the CCPA, it can result in levying hefty fines for businesses.
The right to enforce the CCPA lies with the office of the Attorney General of California, who has until July 2020 to ascertain enforcement regulation. But, the interim period between January and July 2020 is not a grace period, as the businesses are responsible for civil lawsuits from their data storage and selling from January 1, 2020.
How Does CCPA Work For Our Website?
- Our website always informs the users at or before the point of information collectionabout the categories of personal data that it collects and for what purposes.
- InfoCleanse website has a feature of Do Not Sell My Informationlink that users can use to opt-out of third-party data sales.
- On our website, if a minor under the age of sixteen areamong its users, they are required to obtain their opt-in permission (consent) before they are allowed to sell or disclose their personal information to third parties. In case the minor is under the age of thirteen, a parent or legal guardian must opt-in.
At InfoCleanse, we send a valid request to customers asking for disclosure of their personal information collected. If it is accepted only, then we retain their information. Our values prohibit us from discriminating based on customers’ choice to exercise their right to opt-out, request disclosure, or deletion.
What are The Basic Provisions of CCPA?
Since data breach, misuse, theft, or loss of data is very common, CCPA aims to safeguard the state’s residents’ data from falling to any such damage. There are necessary provisions of CCPA that stringently apply to the Californian residents. Such as:
- Right to Information
- Right to Access
- Right to Data Removal
- Right to Equal Service
- Right to Sign-out or Opt-out
Does InfoCleanse Comply With CCPA?
InfoCleanse abides by the regulations laid down by the CCPA (California Consumer Privacy Act.) We always take responsible actions towards data privacy and concern our regulations to every region that we have customers in. Our privacy management team ensures that proper measures have been adopted to prevent spam or mishap. As a data providing company, we never compromise on data privacy and take proper measures to avoid any kind of damage to security. Our clients hold trust in our services, and we aim to retain them at all times. When many service providers panicked while implementation of CCPA, InfoCleanse was ready with advanced practices to ensure we regulate CCPA in an organized manner.
We adopted some of these steps to prepare for CCPA:
- Evaluated our data-governance potential
- Analyzed and segmented the personal data
- Collected the source of information
- Amended existing privacy policies
- Examined the privacy measure and enhanced them
- Upgraded technologies to avoid sluggish system
- Established CCPA program management team to regulate functions
- Implemented the act of monitoring the procedure to stay compliant at all times