May 8, 2020

What is CCPA? Everything you need to know

About CCPA

The California Consumer Privacy Act (CCPA) was created to protect the privacy and data of consumers. The CCPA initiative states that the act is intended to “give Californians the ‘who, what, where, and when’ of how businesses handle consumers’ personal information.” The act requires businesses tell consumers what data its collecting and gives consumers the right to say no to the sale of their personal information. It will also allow consumers to sue companies if their personal data is breached.

What does the CCPA take effect?

The CCPA takes effect January 1, 2020. There is a 6-month grace period and enforcement begins on July 1, 2020.

To Whom does CCPA apply?

For-profit sites that meet any of the following criteria:

• receive, buy, share or sell the personal information of >50,000 consumers
• $25+ million annual revenue
• >50% revenue coming from sale of personal data

What are the penalties?

Civil Penalties
• $2,500 for negligent violations
• $7,500 for intentional violations

Civil Suits
• $100-$750 per consumer / per violation

What rights do customers have?

Data Portability
• If provided electronically, data must be provided in a readily transferable electronic format (to the extent it is technically feasible).

• Individuals may request to have their personal information deleted.

Disclosures about sharing / sales
• Individuals may request to know how their data is shared / sold.

Opt out
• Individuals must be provided a way to opt out of the sale (broadly defined) of personal information about them.

Opt in
• Minors or their guardian must affirmatively authorize sale or use of minor’s personal information.

Non-discrimination and financial incentives
• Businesses may not discriminate against consumers who opt out of personal info sharing / sales.
• Businesses may not distort product offerings based on opt-in status, unless the value is directly related to value of data from customer.
• Businesses may offer financial incentives for sharing / sales of data.

• The online privacy policy must disclose categories of data collected, sources from which the data is collected, purposes for which the data is used, categories of third parties with whom the data is shared, information about individual rights and how to exercise them, and data collected, sold, or disclosed within the prior 12 months.
• A link titled “Do Not Sell My Personal Information” must be included on the home page and link to a form where requests can be submitted.
• Notice of any financial incentives offered for data.

• Responsible personnel must be trained.

How can Privacy Pixel help?

One of the steps to being compliant with the CCPA is giving users the ability to opt out of having their information shared or sold (broadly defined by the law).

Privacy Pixel automates this piece of the work so you don't have to. Our JavaScript snippet, when installed on your site, show an opt-out modal and automatically blocks third-party tracking code when users opt-out of data sales.

Become GDPR & CCPA Compliant without paying thousands.

Works with the latest Wordpress version 5.4.

Includes opt-in modal to ensure compliance.

Destroys all 3rd-party trackers when visitors opt-out.

19 USD per month

Sign up for exclusive Privacy Tips

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.