CCPA: What is it and How does it impact Tech companies

The California Consumer Privacy Act was passed by lawmakers on June 28, 2018. The act will take effect on January 1st, 2020.

But some parties started complying as soon as January 1st, 2019. Software Developers and Software Companies as a whole are directly affected by this new law, prompting them to readjust their strategies and actions to be taken in the near future.

Getting Acquainted

The California Consumer Privacy Act, widely known as CCPA or AB 375 is one part of the Consumer Privacy Legislation. The CCPA passed into California law on June 28, 2018.Some have described this bill as the “GDPR of the United States.” It empowers consumers when it comes to their private data. And it basically affects most tech companies in California, including Google and Facebook who were both publicly addressed for data violation.

Why should I be concerned?

The CCPA will beconsidered as a benchmark that will likely influence legislation going forward.

And with the strong wave of backlash following recent privacy scandals acrosslots of platforms, the new law shows no signs of slowing down, so amendmentswill not affect the core concept of CCPA.

What Will it affect?

The world describes CCPA as the softer version of GDPR. However, it is in no way softer on demands or penalties. CCPA sheds the light on:

• User Control: Users have the choice to opt-out (or opt-in) from sharing their data. Users also have the right to recall their data, to have it erased, and the right to privately sue for damages if a company breaches the mutual agreement. A pending amendment allows for giving users the right to sue for privacy failures.
• Transparency: Users get to know which data is being collected and for what purposes. If data is sold or shared, they should know the full details of the sale. Users are able to know if a company has sold data to anyone in the last 12 months regardless of whether or not the practice has since stopped.
• Data security: companies are subject to fines and lawsuits for any personal information they fail to protect from hacks or misuse (e.g. internal employees looking at data without a business motive).

What kind of businesses are impacted?

The law is generally aimed at two classes of businesses:

• Data brokers: companies that make the majority of their revenue by sales of personal information of customers or that trade more than 50,000 records per year.
• Medium-to-large companies: companies with greater than $25 million in annual gross revenue.

This means that the majority of small businesses, including most tech startups, are unaffected.

How are GDPR and CCPA different?

Conclusion

CCPA’s most significant trait is allowing for a massive increase in data transparency when it comes to data collection and use. Consumers have the freedom to provide their information in exchange for the services they desire, which means things like giving up an email address before getting access to a whitepaper will no longer be obligatory. More importantly, the law is likely to spread well beyond California and change many practices in the tech industry. Compliance initiatives should start immediately if not already started.

See more:

• Three Tips for Successful Digital Campaigns

• TV IS STILL MOST POPULAR – YET AD BUDGETS SHIFT TO MOBILE

• Marketing Mix Modeling Expert’s Input on the Covid-19: Baidy SallDePracans, Advanced Analytics Manager at GroupM France
• Marketing Mix Modeling Expert’s Input on the Covid-19: Phil Weissman, Independent Marketing, Analytics, and Business Intelligence Consultant
• How did we adapt to COVID-19?
• Marketing Mix Modeling Experts’ Input on the Covid-19: Christophe Brossard and Charles Xavier, Partners at Metrics720
• Media Consumption & Job Security and the Consequences of the Covid-19: Ken Gamage, Director, Data Strategy, at Cossette Media
• Marketing Mix Modeling Expert’s Input on the COVID-19: Krishnan Nurani, Senior Director & Lead, Business Science at MediaCom Singapore