Written by:
Our posts contain affiliate links. Sometimes, not always, we may make $$ when you make a purchase through these links. No Ads. Ever. Learn More
Table of Contents_
If you are new to online privacy, you may wonder what a do not sell CCPA requirement is. Many of the best websites and online shopping platforms have adopted a number of practices that impact consumer privacy, which is where the CCPA and its do not sell requirements come into play. So what is the CCPA, what is a do not sell requirement, and how do these tools help average consumers? Keep reading to find out.
KEY TAKEAWAYS:
For more information, check out consumer privacy laws, how Google Analytics works with CCPA, what is considered sensitive personal info under CPRA, and GDPR in the US.
Insider Tip
These mandates and requirements only apply to companies in California that make more than $25 million of annual revenue.
CCPA stands for the California Consumer Privacy Act, and it is a set of privacy regulations that primarily benefit California citizens but extends to people who use online services founded by California-based companies (in certain instances). This act, and the associated regulatory agency, enhance online privacy for individual consumers by reducing instances of data brokerage. The act was passed in 2018 and created a number of rights for Internet users, such as the right to opt-out to the sale of any personal information collected by the company.
This requirement was instituted by the CCPA as a way for consumers to navigate the often confusing world of online services. Basically, companies must post a “Do Not Sell My Personal Information” link somewhere on the homepages and any drop-downs that collect data. This link must feature an opt-out option and plenty of information to inform consumers of their online privacy and data brokerage rights.
Businesses must have a minimum of two opt-out request methods, such as user-enabled privacy controls, a dedicated email address provided by the company, and a toll-free phone line with qualified staff to navigate opt-outs or online/snail mail forms.
Modern consumers input a wide variety of personal data when signing up for online services, so the CCPA’s “do not sell” privacy mandates extend to a broad array of data types. These include email addresses, phone numbers, social security numbers, biometric data, geolocation data, debit card information, credit card information, banking information, passwords, text messages, and a whole lot more.
STAT: If you are a California resident, you may ask businesses to disclose what personal information they have about you and what they do with that information, to delete your personal information, and not to sell your personal information. (source)
If companies do not comply with these mandates, consumers can issue deletion requests which must be completed within 45 days. If the business fails to do that, it could be liable for strict financial penalties.
References: