California passed a consumer privacy act at the end of June 2018, known as the California Consumer Protection Act. It went into effect from January 1, 2020, and businesses are working to comply with the requirements, which is to be done by July 1, 2020. Under CCPA, the personal information collected by the businesses from California residents must abide by the Act’s rules and regulations.
Just like the EU residents have the protection rights under the General Data Protection Regulation, similarly CCPA sims at giving such rights to Californians. Being one of the largest reaching law in the USA, it’s essential to know and understand some key points related to it.
RIGHTS
The California Consumer Protection Act gives the residents of California the following rights:
COMPANIES AFFECTED BY CCPA
The Act applies to the businesses or companies running to earn profit and not to non-profit organizations like charity. Companies having at least $25 million in annual revenue, and buying, receiving, or transferring personal data of more than 50,000 California consumers must comply with this law. Additionally, if your business derives 50 per cent or more of annual revenue from selling the personal information, then also you fall under the act.
DATA COVERED
The personal information covered by the California Protection Privacy Act is defined as the data that can be used to identify, relate, or describe a particular individual or household is considered as personal information. This expands to include:
STEP-BY-STEP COMPLIANCE FOR BUSINESSES
Following are some steps to CCPA compliance that are to be followed by companies or businesses:
PROVIDE NOTICE
The companies must provide notice prior to or at the moment of collecting personal information. Use a banner or notice when users use your website and it should clearly disclose the specifications of the data being collected and the purpose of collection. The privacy notices must be updated, as mentioned in the above point. Moreover, the information should be in a readable format.
FAILING PENALTIES
Your company will have to pay certain penalties on the failure to comply with the requirements of CCPA. Unintentional violators will be fined $2500, on the other hand, intentional violators will have to pay up to $7500. Also, if any Californian resident feels that a company or business isn’t complying with the law, strict private action can also be taken against them.
Prepare your business for the California Consumer Protection Act and make that you adhere by all the policies. Keep your company’s privacy policy updated with all the customer rights, inform the customers about the personal information collected, maintain clear records, and answer all the requests made by them as quickly as you can. Keep an eye on the CCPA compliance checklist and for better outcomes install software through which you can stay informed about any requests made.