What is CCPA Compliance: Everything to Know about CCPA Guidelines
CCPA, short for California Consumer Privacy Act, is a law that confers on the residents of California the right to the use of their personal data. This act was established in response to the flurry of calls for more protection of sensitive consumer data. With the big players from Silicon Valley on the prowl for data, the act, signed into law in June 2018, has successfully put them off the scent.
Businesses that fail to comply with the provisions of the act are made to face significant punishment, and this has made a majority of them more sensitive to user privacy. In essence, the CCPA serves to provide regulations concerning consumer data access and exploitation while clearly defining the responsibilities of California-based businesses.
While it does not necessarily prevent these organizations from getting access to consumer data, it demands transparency from those who request it and holds them accountable for their actions.
Conditions for subjecting businesses to CCPA compliance
Businesses located inside or outside of California and who are involved in the collection and processing of personal data fall under the purview of these laws, as long as they meet the following criteria.
They record annual gross revenue in excess of $25 million
They collect or process the personal data of more than 50,000 residents of California for commercial purposes on a yearly basis.
They make more than 50% of their annual revenue from the sale of the personal data of California residents.
What rights does the CCPA give to California residents?
By virtue of the CCPA act, residents of California now hold the right to the use of their personal data, and these rights are stated below.
The right of Californians to know about the collection of their personal information.
The right of Californians to know who is in possession of their personal data if it has been sold or made public.
The right of Californians to refuse the sale of their personal information.
The right of Californians to have access to their personal information.
The right of Californians to non-discrimination for exercising their CCPA rights.
Penalties for non-compliance with the CCPA?
Non-compliance with the extant provisions of the CCPA comes with clearly defined financial implications. These penalties come into play on the expiration of the 30 days that the defaulting organizations are afforded to address verified consumer complaints.
If a breach of consumer data privacy can be proven beyond reasonable doubt(and this is no mean feat), the following fines can be levied on the guilty party.
Maximum of $7,500 per intentional violation
Maximum of $2,500 per unintentional violation