CCPA
This article is a stub. You can help the IndieWeb wiki by expanding it.
The CCPA (California Consumer Privacy Act) is a sweeping new set of data privacy laws that apply to businesses serving California consumers. It's broadly similar to the GDPR. It covers somewhat more data, requires more to comply, and its penalties are smaller, but otherwise it's very comparable.
Does it apply to my IndieWeb site or service?
Here are the criteria that determine whether something is subject to the CCPA. Right now, most IndieWeb sites and services are small enough that they'll be exempt.
- Has gross annual revenues in excess of $25 million;
- Buys, receives, or sells the personal information of 50,000 or more consumers, households, or devices;
- Derives 50 percent or more of annual revenues from selling consumers’ personal information.
Can I use it to get my data out of silos?
Here's what the CCPA requires for users:
- The right to know what personal information is collected, used, shared or sold...
- The right to delete personal information held by businesses...
- The right to opt-out of sale of personal information...
- The right to non-discrimination in terms of price or service when a consumer exercises a privacy right under CCPA.
IndieWeb examples
Bridgy
Bridgy is exempt from the CCPA since it doesn't meet any of the three eligibility criteria. Details.
See Also
- GDPR
- Do Not Track
- privacy
- right to be forgotten
- Do you really need all this personal information, @RollingStone? Doc Searles article about Rolling Stone's collection of data and some resources related to CCPA