India Data Privacy law.
|Enforcement Date||May 25th, 2018||Jan 1st, 2020|
|Who needs to comply||Any Business that collects or processes the data of EU citizens and residents||Any business storing or processing California residents’ information|
|Penalties||Upto 4% of the Company Annual Gross Revenue or 20M euros||$7500 per incident, per person|
|Opt-out Right for Personal Information Sale||GDPR does not include a specific right to opt-out of personal data sales||Must include a “Do not sell my personal information” link in a clear and conspicuous location on a website homepage.|
Must not request reauthorization to sell a consumer’s personal information for at least 12 months after the person opts-out
|Children||GDPR default age for consent is 16, although individual member state law may lower the age to no lower than 13||Children aged 13-16 can directly provide consent. Children under 13 require parental consent.|
Children’s Online Privacy Act (COPPA) still apply on top of the CCPA’s requirement
|Right to Disclosure||Data Subjects have a right to access their personal data, including receiving a copy and to obtain certain information about the data controller’s processing||Consumers have a right to request disclosure of their personal information, and to receive additional details regarding the personal information a business collects and its use purposes, including any third parties with which it shares information|
|Right to Deletion/Erase||Data Subjects have the right to request erasure of personal data||A consumer has the right to deletion of personal information a business has collected, subject to certain exceptions|
|Right to Restrict Processing||Right to restrict processing of personal data, under certain circumstances||None, other than right to opt-out of personal information sales|
California Consumer Privacy Act (CCPA) came into implementation from Jan 1st 2020. In this blog post, we will talk about history of CCPA and How is CCPA Applicable to your Business.
What is CCPA?
CCPA applies to any global business, including any for-profit entity that collects consumers personal data, which does business in California, and satisfies at least one of the following thresholds:
- Have $25 million or more in annual revenue; or
- Possess the personal data of more than 50,000 “consumers, households, or devices” or
- Earn more than half of its annual revenue selling consumers’ personal data
For 2 years (2016-2018) Alastair Mactaggart, a real estate developer, created and led a ballot initiative for a privacy law that led to CCPA (Assembly Bill (AB) 375). On June 28th, 2018, the governor of California signed AB 375 into effect, establishing the most extensive consumer privacy legislation ever passed in the United States
|June 28th, 2018||AB 375 signed into law|
|September 23rd, 2018||Senate Bill No. 1121 signed into law, modifying CCPA|
|October 10th, 2019||California Attorney General released the proposed text for CCPA regulation|
|October 11th, 2019||California Governor Signs CCPA Amendments into Law|
|January 1st, 2020||CCPA goes into effect|
|July 1st, 2020||Enforcement begins|
California Residents Rights under CCPA
CCPA grants California residents, who are consumers, specific rights regarding their personal information businesses maintain. If you are a California resident, you have the right to request that a business inform you about its processing activities with respect to your personal information, to delete your personal information and to opt-out of the sale of your personal information.
Companies preparing for CCPA or are planning to implement must remember that a privacy program needs to adapt and change accordingly to applicable privacy law. If you are looking to build a privacy program it’s not too late to start preparing for CCPA compliance. To request a CCPA privacy software demo email us at email@example.com or visit Secuvy.ai