In 2020 a a new California law goes into affect. This new law is called the California Consumer Privacy Act. The CCPA (as it’s called for short) is intented to help consumers have control over their personal data, protect their personal data, and give them insight into what companies do with their customer data. This new law is very similar to the GDPR (General Data Protection Regulation) law that was that went into affect from the European Union in 2018.
Long story short, both laws are intended to give consumers some control over what businesses do with their data and request that a company not store their consumer data, not act upon that consumer data, or outright not store or remove their consumer data. It’s INTENDED for that. But in practice it doesn’t mean much.
What companies need to comply with CCPA?
- When you make $24 million profit per year.
- You have more than 50,000 lines of personal data from households, persons or devices. This means that if your site is receiving at least 50,000 visitors a year you will have to comply, as you’re gathering IP addresses, placing tracking cookies etc.
- Also, when half of your profit consists of selling personal data you will need to comply to the CCPA.
Fines: With CCPA, a violation will cost you $7500 plus $750 per person involved.
Disclosures: This new law, while passed in California affects any website or company that does business with or sells to anyone in California. So basically if you have a decent eCommerce company, you need to be CCPA compliant.
How to become compliant with CCPA
If you are on WordPress or run a WooCommerce site, getting compliant is pretty easy.
Step 1: Provide a clear and conspicuous link on the homepage, that goes to a titled “Do Not Sell My Personal Information” web page that enables a consumer, or a person authorized by the consumer, to opt out of the sale of the consumer’s personal information or request it’s removal. AKA – Have a “Do Not Sell My Personal Information” page with a form that they can fill out to request you don’t sell or remove their consumer information. Remove their data when requested. If you have a WordPress site this is already built in! Confirm their identity and process the request on your site under Tools –> Erase Personal Data when requested. Learn more about how the WordPress Erase Personal Data works
If you need help with the following, let us know at BBS and we can help for a fixed low price. We will take care of all of it for you.