California citizens receive new privacy rights starting today

California citizens receive new privacy rights starting today

Golden Gate Bridge

A California law guaranteeing significant privacy rights goes into effect today. The California Consumer Privacy Act (CCPA) requires that certain large businesses operating in the state give California citizens a right to mange their data stored by the company.

The statute ensures that consumers can know what personal information is being stored with these companies, ask for it to be deleted, and opt-out of the sale of their information.

Additionally, there are many new requirements for businesses that sell personal information, including the need to notify users at or before the collection of their data and to respond within certain time frames.

While the new law technically only applies to California citizens, due to the large number of tech companies operating there, it is likely to be much farther reaching. Microsoft, for example, which is based in Washington, has decided to apply the new privacy rights to all users in the United States:

We are strong supporters of California’s new law and the expansion of privacy protections in the United States that it represents. Our approach to privacy starts with the belief that privacy is a fundamental human right and includes our commitment to provide robust protection for every individual…. Similarly, we will extend CCPA’s core rights for people to control their data to all our customers in the U.S.

“Microsoft will honor California’s new privacy rights throughout the United States,” Nov. 11, 2019

Many tech companies opposed the new Golden State law due to its limited scope, preferring instead a nation-wide privacy law, which would prevent each state from creating its own unique rules. Such laws have been proposed in Congress, but each attempt has stalled.