Never done a Privacy check? Here's why you should do it before it's too late.
Many governments consider that privacy is important, and they formulate data protection laws and policies to safeguard those rights.
Data privacy plays an essential role in the data protection segment. The businesses use their consumers' data by collecting, using, and sharing them with third parties by meeting the regulatory requirements while protecting their data confidentiality.
But in recent years, data privacy cases recorded a tremendous increase in cyber attacks that resulted in personal data breaches, leaked financial data, compromised intellectual property, and Security protocols that gave rise to mass exploitation.
In 2019, the US alone suffered from 1400+ cyberattack cases that exposed 164.68 million sensitive records and raised enough concerns for the governments to impart strengthening laws and robust policies to protect consumer privacy rights.
In response to this vulnerable damage, the California state came up with the CCPA compliance (California Consumer Privacy Act) that now acts as a counter defensive firewall for all privacy-related issues.
In this article, we will walk you step by step to provide a brimming clarity on topics like,
What is California privacy law?
What are the new California privacy act regulations to revamp your privacy policies?
How to get CCPA compliance for your business?
Which is the best CCPA software to help you rescue from this technical jargon?
Let's get started with the California privacy law.
What is CCPA?
The California Consumer Privacy Act (CCPA), officially called the AB-375, is a data privacy law enacted by the California state jurisdiction on how global businesses are authorized to manage the personal data of California residents. It was passed in the state legislature on June 28, 2018, and came into effect from January 1, 2020.
Companies are subjected to CCPA if they:
Have gross annual revenue over $25m,
Derive more than 50% of annual revenue from the sale of consumers' personal information,
Buy, receive, or sell the personal information of 50,000 or more consumers, households, or devices.
The new law provides strict and compulsory guidelines to the companies for informing the citizens about their data collection and how they share it with third parties.
This makes it easy for citizens to filter out which data should be used and restricted from the public domain.
The prevailing law proved to be a landmark decision for securing the privacy rights of Californian citizens, as they gain more control over the personal data usage that businesses collect to promote their products and services.
The CCPA regulations that you shouldn't miss.
The California data privacy law was made for businesses and organizations to be responsible keepers for their consumer's data. Any company that violates the data privacy law by leaking the consumer's data without their consent may face severe penalties and fines.
Here are the four crucial regulatory components of California data privacy law that help you revise your privacy policies to become CCPA Compliant.
Right to know
Consumers have the right to know what, where, and how their data is used. It provides them complete control over their data utilization.
Right to delete
Consumers have the right to delete the collected data if they feel it is unnecessary and not crucial for the promotional process (with some exceptions)
Right to opt-out
People can opt-out from selling their information to third parties by practicing the right to opt-out.
Right to non-discrimination
This right is practiced when the users feel that they are facing discrimination from businesses for not allowing their data to be used for commercial purposes.
Now Onwards, businesses collecting online information should post a noticeable link on the business web pages from where the personal data is collected.
Businesses collecting information through mobile devices should now post an in-app notification or an information link that must contain the type of data collected.
Businesses that do not collect data for commercial purposes or share it with third parties need not worry about data privacy violations.
Since the law passed in the state legislature, it made to headlines in no time with its first-ever violation case,
Barnes v. Hanna Andersson LLP and Salesforce.com.
Here's the whole story and the final verdict of this case.
Barnes alleges that high-end and popular children's clothing online store Hanna Andersson and its San Franciscan cloud-based e-commerce platform Salesforce failed to protect user data, therefore violating the CCPA. This data breach resulted in leaking data of 200000 customers and hacking 10000 users private data like passwords, bank accounts, names, contact, and addresses.
Status:
Hanna Andersson and Salesforce were proven guilty and they compensated by paying $400,000 in total for the case settlement.
Why can Privacy policies not be neglected?