New York Law Firm Offers Guidance on California Consumer Privacy Act

Major New York Law Firm Kramer Levin has written a post on its website offering companies some information and guidance on the recently passed California Consumer Privacy Act (CCPA).

The act, which went into effect on January 1, 2020, places restrictions on how business can use, retain and disclose the personal information of California consumers while also granting new rights to California consumers with regards to their personal information.

The CCPA’s definition of “personal information” encompasses any information that can be linked to a particular individual consumer or household, including but not limited to names, addresses, phone numbers, email addresses, ID numbers, biometric information, location data, IP addresses, and other internet or electronic network activity.

Only California residents are able to exercise these rights, primarily through a data subject access request (DSAR), which the CCPA requires companies to respond to within 45 days in most cases.

The new rights granted to consumers include the right to request that a business disclose what information is being gathered, how it is going to be used, and what third parties (if any) the information is shared with. The CCPA also give consumers in California the right to opt out of the sale of their information and restricts businesses from discriminating against any consumers who choose to exercise that right.

For any companies that may find themselves subject to the CCPA restrictions, Kramer Levin’s post provides a number of possible actions they can take to avoid contravention.

Though it is stressed that this is not an exhaustive list, some of the actions include updating existing privacy policies and customer agreements, making sure they know where customer data is being stored, reviewing vendor contracts, and implementing appropriate cybersecurity and infrastructure safeguards.

Third parties or “data brokers” are also required to register with the California Attorney General — the list of registered data brokers will be publicly available — and pay an annual registration fee.

Finally, under the CCPA any company selling consumer data in California must place a “clear and conspicuous” link on their homepage and in their privacy policies titled “Do Not Sell My Personal Information” that directs consumers to a webpage where they can opt out of such a sale.

The CCPA also prohibits businesses from selling the personal information of anyone under the age of 16 without their explicit consent.

To see the full post, visit Kramer Levin’s website.

–

January 30, 2020 – by Tony Bitzionis

Related News

Partners

FaceTec’s patented, industry-leading 3D Face Verification and Reverification software anchors digital identity, creating a chain of trust from user onboarding to ongoing authentication on all modern smart devices and webcams. FaceTec’s 3D FaceMaps™ finally make trusted, remote identity verification possible. As the only technology backed by a persistent spoof bounty program and NIST/iBeta Certified Liveness Detection, FaceTec is the global standard for 3D Liveness and Face Matching with millions of users on six continents in financial services, border security, transportation, blockchain, e-voting, social networks, online dating and more. www.facetec.com

AuthenticID provides 100% automated identity verification and fraud detection solutions that are leveraged by companies worldwide, including 2 of the top 3 U.S. Banks, 8 out the top 10 wireless providers in North America, and 2 of the 3 credit bureaus. Using proprietary computer vision and machine learning technology, these solutions help companies accurately verify the identity of their users across retail, digital and call center environments for onboarding and ongoing re-authentication events; KYC, IAM, and more. The solutions are easy to integrate and provide customers a large ROI by stopping fraud losses, increasing customer conversion at onboarding, reducing operational costs and allowing quick and cost-effective operational scalability, all while ensuring global privacy regulations are complied with. https://www.authenticid.com/

Anonybit is a privacy-focused technology platform that provides decentralized solutions for securing personal data, particularly biometric information. Rather than storing sensitive data in centralized repositories, which are vulnerable to breaches, Anonybit uses a distributed architecture that breaks data into smaller encrypted bits and stores them across a network of decentralized nodes. This approach ensures that no single entity has access to the full dataset, enhancing privacy and security, even preventing insider threats. Anonybit is used by leading banks, fintechs and other enterprises for critical biometric identity functions like deduplication and blocklist checks, step up authentication, passwordless login and account recovery https://anonybit.io/

Identity Week aims to be a significant identity industry catalyst. It’s our mission is to help accelerate the move towards a world where trusted identity solutions enable governments and commercial organisations to provide citizens, employees, customers and consumers with a multitude of opportunities to transact in a seamless, yet secure manner. All the while preventing the efforts of those intent on doing harm. https://identityweek.net/

The Biometric Digital Identity Prism is a market landscape framework designed to help influencers and decision makers understand, innovate, and implement digital identity technologies and solutions. This innovative framework for understanding and evaluating the rapidly evolving biometric digital identity marketplace is the only market model that is truly biometric-centric based on the foundational conviction that in the age of digital transformation the only true, reliable link between humans and their digital data is biometrics. https://www.the-prism-project.com

ID R&D is an innovator of biometric facial liveness, document liveness, and voice biometrics. Ranked #1 by NIST, our patented passive approach to liveness, and specialized detection of voice clones, injection attacks and deepfakes, empowers KYC and authentication systems with fast, accurate and secure biometric verification technologies. Over 140 partners in more than 70 countries are collectively processing hundreds of millions of identity checks per year. ID R&D solutions easily integrate with mobile, web, messaging, smart speakers, set-top boxes, and IoT devices. Learn more: www.idrnd.ai

Related News

Footer

Follow Us