Skip to main

CCPA Information

The California Consumer Privacy Act (CCPA) offers California consumers strengthened individual privacy rights including: requesting access of any personal information, requesting any personal information be deleted, and suing companies that violate the law. It also requires the Attorney General to solicit broad public participation and adopt regulations to further the CCPA’s purposes. The proposed regulations would establish procedures to facilitate consumers’ new rights under the CCPA and provide guidance to businesses for how to comply.

New rights afforded to California consumers under CCPA include:

  • The right to know what personal information is collected, used, shared or sold, both as to the categories and specific pieces of personal information.
  • The right to delete personal information held by businesses and by extension, a business’s service provider.
  • The right to opt-out of sale of personal information. Consumers are able to direct a business that sells personal information to stop selling that information. Children under the age of 16 must provide opt in consent, with a parent or guardian consenting for children under 13.
  • The right to non-discrimination in terms of price or service when a consumer exercises a privacy right under CCPA.

The CCPA applies to all businesses that meet one or more of the following conditions:

  • Has gross annual revenues in excess of $25 million.
  • Buys, receives, or sells the personal information of 50,000 or more consumers, households, or devices.
  • Derives 50 percent or more of annual revenues from selling consumers’ personal information.

As proposed by the draft regulations, businesses that handle the personal information of more than 4 million consumers will have additional obligations.

As the CCPA implementing regulations develop, Alvaria will monitor this important law and make necessary preparations.

Read more: California Consumer Privacy Act (CCPA) Fact Sheet

The CCPA includes the following key requirements:

  • Alvaria and our customers must disclose data collection and sharing practices to consumers.
  • Consumers have a right to request that their data be deleted.
  • Consumers have a right to opt out of the sale or sharing of their personal information.
  • Businesses are prohibited from selling personal information of consumers under the age of 16 without explicit consent.

Read more: Attorney General Becerra Publicly Releases Proposed Regulations under the California Consumer Privacy Act.

CCPA FAQ

Proposed Regulations Related to CCPA

The proposed regulations are intended to operationalize the CCPA and provide practical guidance to consumers and businesses subject to the law. The regulations would address some of the open issues raised by the CCPA and would be subject to enforcement by the Department of Justice with remedies provided under the law. The proposed regulations were drafted after a broad and inclusive preliminary rulemaking process, which included seven public forums held throughout the state and a public comment period during which the office received over 300 written comments.