CCPA: Californian AG Becerra Issues Warning for California Consumers

by | Jan 10, 2020

An advisory has been released by California Attorney General Xavier Becerra reminding consumers of their new rights under the California Consumer Privacy Act (CCPA), which became enforceable January 1 this year.

In the advisory Becerra outlines the rights allocated to users with the CCPA and how they can be availed of along with details of the data broker registry and information on data security. Enforcement of CCPA is the responsibility of the Office of the Attorney General.

He said: “Knowledge is power, and in today’s world knowledge is derived from data. When it comes to your own data, you should be in control. In California we are rebalancing the power dynamic by putting power back in the hands of consumers. I encourage all Californians to take a moment to understand their new rights and exercise these rights to take control of their personal data.”

It is the duty of the Office of the Attorney General to enforce the CCPA.

The following are included among the new rights introduced with the CCPA

  1. Consumers have the right to request a businesses reveals what disclose what personal information in relation to them is being collected, used, shared or sold by the business, in both categories and specific pieces of data.
  2. Consumers ask that a business removes and destroys the consumer’s personal information that is being stored this is the same for information being held by the business’s service providers;
  3. Consumers may demand that a company does not sell the consumer’s personal information. Due to this there is a legal obligation on businesses to have in place a “Do Not Sell” information link on their websites or mobile applications.
  4. It is a legal obligation for children under the age of 16 to give opt-in consent, in the case of children under the age of 13 this must be provided by with a parent or guardian.
  5. It is illegal for businesses may not discriminate against consumers in terms of price or service when a consumer exercises a privacy right under CCPA.

This legislation is only applicable to Californian businesses that fulfil the following criteria.

  • Gross annual revenue greater than $25 million.
  • Handling, in some way, the personal information of 50,000 or more consumers, households or devices.
  • Earns half or greater of its annual revenues from selling consumers’ personal data.
  • Companies that handle the personal information of over four million consumers will have more record-keeping obligations that they must adhere to.

In order to comply with this new legislation companies must put in place and manage security processes so that they ensure that safeguard consumers’ personal information. if this is not the case then consumers are entitled to initiate a legal action in relation to an unauthorized breach occurring. These requirements and entitlements began being applicable on January 1, 2020.

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.


Please enable JavaScript in your browser to complete this form.

Patrick Kennedy

Patrick Kennedy is a highly accomplished journalist and editor with nearly two decades of experience in the field. With expertise in writing and editing content, Patrick has made significant contributions to various publications and organizations. Over the course of his career, Patrick has successfully managed teams of writers, overseeing the production of high-quality content and ensuring its adherence to professional standards. His exceptional leadership skills, combined with his deep understanding of journalistic principles, have allowed him to create cohesive and engaging narratives that resonate with readers. A notable area of specialization for Patrick lies in compliance, particularly in relation to HIPAA (Health Insurance Portability and Accountability Act). He has authored numerous articles delving into the complexities of compliance and its implications for various industries. Patrick's comprehensive understanding of HIPAA regulations has positioned him as a go-to expert, sought after for his insights and expertise in this field. Patrick's bachelors degree is from the University of Limerick and his master's degree in journalism is from Dublin City University. You can contact Patrick through his LinkedIn profile:

Raise the level of HIPAA Awareness in your organization with Learner-Friendly, Comprehensive and Affordable HIPAA Training.

Comprehensive HIPAA Training

Used in 1000+ Healthcare Organizations and 100+ Universities

    Full Course - Immediate Access

    Privacy Policy