Skip to main content

California Consumer Privacy Act Explained

Consumers’ personal information is getting exploited more often than ever! One of the most recent examples of this is the Facebook scandal where information of around 540 million user accounts was compromised. The breach of personal information is not limited to any particular industry. It is happening across all sectors and all parts of the world. 

 Since 2018, Omnibasis empowered companies to comply with the GDPR laws passed in Europe. While the United States congress is debating on what to do, California is taking the lead in protecting consumer data from getting exploited and to make consumers feel more secure about their personal information collected by businesses. For that purposes new law has been introduced in California, United States and it is known as the California Consumer Privacy Act. The purpose of this new law is to make all businesses accountable for their handling of your personal data and to ensure they take the appropriate steps to monitor and protect the personal data of their customers. 


What is the California Consumer Privacy Act?

Due to recent data breaches, consumer privacy and protection is being taken more seriously than ever before. The California Consumer Privacy Act or CCPA will go in effect on January 1st, 2020 and the entire focus of this bill is to enhance consumers’ right to privacy and protection of their data and may set the example for the rest of Unites States and congress.

It is considered to be one of the most detailed and far reaching law that is soon going to be implemented by a US state when it comes to consumer privacy. With many tech giants being based in California and several recent data privacy and data breach scandals, California is taking the necessary steps to create a comprehensive framework on the requirements for business regarding protecting the consumers both when it comes to privacy concerns as well enabling consumers to also benefit from their own information.

What are the major provisions?

The New Law  gives “consumers”, defined as natural persons who are California residents, four basic rights in relation to their personal information:
  1. The right to know, through a general privacy policy and with more specifics available upon request, what personal information a business has collected about them, where it was sourced from, what it is being used for, whether it is being disclosed or sold, and to whom it is being disclosed or sold;
  2. The right to “opt out” of allowing a business to sell their personal information to third parties (or, for consumers who are under 16 years old, the right not to have their personal information sold absent their, or their parent’s, opt-in);
  3. The right to have a business delete their personal information, with some exceptions; and
  4. The right to receive equal service and pricing from a business, even if they exercise their privacy rights under the Law.

Defining “Personal Information” in CCPA

The term personal information is used quite loosely in the California Consumer Privacy Act. According to AB 375, the term “Personal Information” can be represented by a number of different characteristics as well as behavior, both commercial and personal. Moreover, the legislation has hundreds of items mentioned that do not fall under the category of personal information. 

Here are a few of the important ones that do fall into the personal data category:
·         Biometric data
·         Household purchase data
·         Family information
·         Geolocation
·         Financial information
·         Occupation & business data





 Lets explore some of the drivers behind the data privacy protections:

1. Types of personal data - It allows a consumer to understand about the type of personal data that will be collected by a company.

2. Selling of data - Make consumers aware of whether their personal information will be sold and disclosed by the business.

3. Right to privacy - If the consumer does not agree to disclose or sell their personal information to any other individual, then this law gives them the right to do so.

4. Access to information - Many businesses do not allow consumers to access their information once registered. With the implementation of the California Consumer Privacy Act, easy access will have to be granted.

5. Deletion of data - Even if a consumer wants to delete their personal information or requires the business to do the same, the organization is obligated to process the request as per the CCPA rules.

6. Discrimination - Discriminating against consumers who are exercising their right to privacy is prohibited under the California Consumer Privacy Act.

How does the California Consumer Privacy Act help consumers?

Consumers get more transparency on their personal information

The first thing that the California Consumer Privacy Act does for the general public is that it gives them a better hold as well as ways to see and manage all collected personal information that is getting collected on them. Whenever a consumer decides they want to know about the collection method or the type of personal information collected by any business, they can see and access it all. Should they want to change their mind, they can now also make specific requests regarding the deletion of personal information as well.



 Consumers get full transparency on how personal data is used

With the full disclosure policy the business that collects any type of information needs to disclose it clearly on their website or application that personal information is required to use the service and that such information will be collected about the consumer and whether or not that information and or will be shared with any other third party. 


How to comply with The California Consumer Privacy Act

Starting on January 1, 2020 businesses will be required to comply with any all provisions of the law.

Organized collection: The collection method used by a business should be organized and well defined. The company should be ready to disclose the collection method to the consumers as well.

Transparent policies: Policies regarding data collection, privacy, and monitoring should be clearly mentioned on their online platform. The structure of the clauses must also be easy to understand and fair to all.

Specific provisions: The CCPA contains certain provisions that e.g. business must include a link on their website under “Do not sell my personal information” tag, as well as other provisions the concern the education requirements regarding anyone handling consumers' private data and their knowledge of the regulations. 


Does the act affect businesses outside California?

Even though the CCPA is implemented in the state of California, it can still be mandatory for businesses outside this geographical location. If your business has customers in the Golden State, then you are still on the hook to comply with the law.

However, there are certain other criteria as well that you must met like:
·         Annual gross revenue of more than $25 million;
·         Receiving, sharing, and selling personal data of more than 50,000 users;
·         At least minimum 50% of the company revenue must be earned by the selling of personal data

The California Consumer Privacy Act might seem like a complicated ordeal and it is. It will certainly change the way data collection and privacy work in various industries. Furthermore, there are likely to be more amendments that change the current requirements and provisions while adding to the regulation.

Omnibasis is here to help to get in compliance and stay in compliance with CCPA

Business small and large, turn to Omnibasis to create and manage consumer agreements, consents and keep a record of your businesses personal data processing activities powered by Blockchain technology. You can get in compliance today with data privacy solution from Omnibasis.
About Omnibasis

Omnibasis is a business management solution to run your sales, marketing, commerce, and operations powered by Blockchain technology. Visit omnibasis.com to meet the operating system for your business.
Labels:

Comments

  1. Team Member8:50 PM

    Thanks for all the details on what we need to know.

    ReplyDelete

Post a Comment

Popular posts from this blog

Unlocking the Power of Blockchain and NFTs in Gaming

In the ever-evolving landscape of gaming, new technologies continue to reshape the way we interact with virtual worlds. One of the most promising developments in recent years has been the integration of blockchain technology and non-fungible tokens (NFTs) into gaming ecosystems. This fusion has opened up a myriad of opportunities for both players and developers, revolutionizing the gaming experience in profound ways. Understanding Blockchain and NFTs Before delving into their applications in gaming, let's briefly unpack what blockchain and NFTs entail. Blockchain is a decentralized, immutable ledger that records transactions across a network of computers. This technology ensures transparency, security, and trust by eliminating the need for intermediaries. Non-fungible tokens (NFTs) are unique digital assets stored on a blockchain, each possessing distinct characteristics and properties. Unlike cryptocurrencies such as Bitcoin or Ethereum, which are interchangeable, NFTs are indivis...
Post a Comment
Read more

Healthcare Digital Wallet with Mobile Wallet

  A healthcare digital wallet is a digital platform that allows patients to store and manage their medical information in a secure and convenient way. This digital wallet can be accessed through a mobile app on a smartphone or tablet. Healthcare providers and insurance companies around the world are turning to Omnibasis and omniPass solution to offer a healthcare digital wallet that can contain a variety of information, including medical history, medication lists, allergies, immunization records, and other health-related data. Patients can easily access and share this information with healthcare providers, allowing for faster and more accurate diagnoses and treatment. Secure and easy to use and deploy implementation of healthcare digital wallet is done with am mobile wallet which is already installed on all mobile devices. Mobile Wallet Introduction Users do not want to download yet another app on their mobile device and prefer to use a mobile wallet. A mobile wallet is a...
Post a Comment
Read more

Digital Proof of Insurance with Mobile Wallet

Digital Proof of Insurance (DPI) refers to an electronic version of an insurance card or policy that can be displayed on a mobile device or computer. DPI is a convenient alternative to traditional paper insurance cards that are often easily misplaced or damaged. Insurance companies around the world are turning to Omnibasis and omniPass solution to offer the option of a digital proof of insurance, allowing policyholders to access their insurance information through a mobile app or online portal hosted by Omnibasis with a branded white label site. For car insurance, most states in United States also allow drivers to show their DPI during a traffic stop, rather than requiring a physical insurance card. Mobile Wallet Introduction Users do not want to download yet another app on their mobile device and prefer to use a mobile wallet. A mobile wallet is a digital platform that allows users to store payment information, loyalty cards, and other types of digital content in a single, c...
Post a Comment
Read more