This bill is being closely compared to the EU’s GDPR due to its strict directives and increased advocacy for data subjects rights. However, California’s Consumer Privacy Act, also referred to as the CCPA gives consumers the choice to opt-out of their data being shared with third parties, instead of having to opt-in in order to continue using an online service. Companies will not be able to sell the data of data subjects who choose to opt out, but they will be able to charge opt-out customers more for the service, establishing a “pay-for-privacy” standard.
The proposed bill was proposed as a compromise to keep a version of the bill with stricter requirements off the ballot in November. Lawmakers and activists from Californians for Consumer Privacy were able to come to an agreement that strengthened consumer protections but included a concession that violations would only be enforced by the state attorney general. Now that the bill has passed, it will have a great impact on both companies headquartered within the state of California, the tech capital of the world, and those in states across the U.S. The acceptance of this law in California, a state with significant political influence, a large population, and credence in the tech industry, may be a push for more holistic privacy laws across the whole country.
Focal Point is one of the first organizations to offer an innovative suite of CCPA compliance services for our clients, from readiness assessments to advisory services to ongoing support.
More Info:
Full Text of the Consumer Privacy Act of 2018
To download our updated guide to U.S. data protection regulations, head here.
Disclaimer: Focal Point Data Risk, LLC is not a law firm and does not provide legal advice. This content is intended for informational purposes only.
Subscribe to Focal Point's Privacy Pulse below - a once-a-month newsletter with guides, webinars, interesting white papers, and news all focused on data privacy. You can unsubscribe at any time.