There are a lot of questions swirling around California’s new Consumer Privacy Act (CCPA), which was enacted on January 1st, 2020. The good news is that enforcement action under the CCPA cannot be enforced until July, so brands still have some time to ensure compliance.
Essentially, this is California’s version of the EU’s GDPR (General Data Protection Regulation), however there are some major differences in implementation.
And while this new law legally only impacts California residents, the regulations will likely impact many websites in the US, and possibly others overseas. If a company has clients in California than they need to comply with the CCPA, and for many, it’ll be easier to make one update to their website/s to cover new laws like this, rather than output a patchwork of IP-driven geo updates for every state or country that decides to produce a new online privacy framework.
The CCPA states that any business which collects, shares or sells the consumer data of more than 50,000 people, or produced revenue of more than $25 million in the previous year, must comply with the new law. This means that not every company needs to worry about it, for now.