California Privacy Protection Agency | LinkedIn (original) (raw)
About us
The CPPA was created in 2020 following the approval of Proposition 24 by California voters. The CPPA is responsible for the implementation and administrative enforcement of the nation’s first comprehensive consumer privacy law, the California Consumer Privacy Act, including as amended by Proposition 24, the California Privacy Rights Act; for promoting public awareness and understanding of the risks, responsibilities, and rights in relation to the collection, use, and disclosure of Californians’ personal information, and for providing guidance to consumers and businesses on complex matters relating to online privacy, cybersecurity, and automated decision-making, among other duties.
Industry
Government Administration
Company size
11-50 employees
Headquarters
Sacramento, California
Type
Government Agency
Locations
Employees at California Privacy Protection Agency
Updates
- Executive Director Ashkan Soltani announced he will depart from the California Privacy Protection Agency in January 2025. Under Mr. Soltani’s leadership, the Agency made significant strides, including: ◾ Growing the Agency to approximately 45 employees across seven divisions, ◾ Finalizing a rulemaking package that added protections to the California Consumer Privacy Act, ◾ Building a robust enforcement team to uphold individuals’ privacy right, ◾ Announcing the start of multiple enforcement sweeps and the publication of enforcement advisories, ◾ Opening dozens of active and ongoing investigations, ◾ Launching a statewide public information campaign, and ◾ Establishing collaborative partnerships at the state, federal, and international levels. Mr. Soltani was appointed to his position by the CPPA Board in October 2021 as the Agency’s first employee and has worked diligently to guide the organization to where it is today. Read the full announcement: https://lnkd.in/gpyS-Vhu
-
4,248 followers
4d Edited
The Enforcement Division of the California Privacy Protection Agency (CPPA) has reached settlements with two data brokers — Growbots, Inc., and UpLead LLC —for failing to register and pay fees under the state’s privacy laws. This latest development comes after a recent investigative sweep of data broker compliance under the Delete Act, which requires data brokers register with the Agency and pay a registration fee annually. The settlement marks an important step in the fight to protect Californians' privacy and sends a clear message: data brokers must be held accountable if they fail to register. For more information on the settlement, read the full announcement: https://lnkd.in/d3smDMad - Today in San Francisco, the CPPA Board voted to adopt new regulations regarding data broker registration requirements. The Board also voted to advance a proposed rulemaking package that includes new provisions on automated decisionmaking technology (ADMT), cybersecurity audits, and risk assessments into formal rulemaking. The newly adopted data broker regulations clarify the definition of “data broker” and outline specific registration requirements, improving the registration process for data brokers. Next, the Agency will move to file the regulations with the Office of Administrative Law for final approval. Separately, the Board also voted to adjust to the 2025 data broker registration fee for the January 2025 registration period. Businesses that meet the definition of “data broker” must register with the Agency and pay a registration fee. Data brokers can visit cppa.ca.gov/data_brokers for more information or email databrokers@cppa.ca.gov to join the data brokers mailing list and receive regular updates. The proposed regulations on automated decisionmaking technology, cybersecurity audits, risk assessments, insurance businesses, and general updates advanced by the CPPA Board today are based on several years of preliminary rulemaking activities. In the coming weeks, the Agency will initiate the formal rulemaking process, and the public will be able to submit formal comments on the rulemaking package. For more information on these crucial updates in the rulemaking process, read the announcement: https://lnkd.in/g8BGeTmr
- Today, our Enforcement Division announced a public sweep of Data Broker registration compliance. CPPA’s Enforcement Division stands ready to take appropriate actions against data brokers that have failed to comply with registration requirements. The Delete Act requires data brokers - businesses that buy and sell personal information not collected directly from consumers - to register with the CPPA annually. In addition to the annual registration requirement, data brokers must: • Disclose the number of consumer deletion requests and the average response time to the request; • Report if they collect the personal information of minors, reproductive healthcare data, and precise geolocation data; • Provide a link on their website informing consumers of their rights under the California Consumer Privacy Act. If a data broker fails to register, consumers can file a complaint with the Agency. Read more: https://lnkd.in/grA-Fhk8
- Check out our latest blog post highlighting Cybersecurity Awareness Month! Find tips on how to stay safe online and keep your personal information more secure. Visit privacy.ca.gov/blog to learn how to make cybersecurity a priority year-round.
- The CPPA Board will hold a public meeting on November 8, 2024. Information on how to attend the meeting and the amended meeting agenda can be found at https://lnkd.in/gCBYT9SK.
- The Federal Communications Commission Privacy and Data Protection Task Force and the California Privacy Protection Agency’s Enforcement Division have signed a Memorandum of Understanding, establishing a partnership on privacy, data protection, and cybersecurity enforcement. The agencies will share their expertise and resources in conducting investigations to protect consumers. Through this partnership, both agencies can maximize their efforts to best protect consumer privacy, ensure businesses and consumers are well-informed about their rights and obligations, and enforce privacy laws. Read more about the partnership: https://lnkd.in/gK4s7j-4
- Join our team and be at the forefront of consumer privacy protection! We are seeking a detail-oriented Complaints Analyst (AGPA) to join our Enforcement Division. The Complaints Analyst will serve as the primary point of contact for our Complaints Unit. As the Complaints Analyst, you will: ◾ Develop systems to gather and track consumer complaints, review submissions, and prepare responses in accordance with protocols. ◾ Assist in the preparation of legal documents, manage correspondence, and maintain accurate records during investigations and litigation. ◾ Implement case management systems, assist in organizing trial evidence, and maintain documentation for investigations. Don't wait – apply by 10/31 to make a real difference in privacy protection for Californians. https://lnkd.in/gr5g6SFq
- Stay safe online and remember these simple steps: ◾ Use an opt-out preference signal ◾ Update your computer regularly ◾ Use a password manager ◾ Don’t click on suspicious links