The California Consumer Privacy Act of 2018, the most sweeping consumer privacy legislation in the nation, grants new data privacy rights for every Californian. CCPA gives you the power to take back control of your personal information, including:

The Right to Know

You have the right to know what personal information a business has collected on you – and you should.

The Right to Say No

You have the right to say no to the sale of your personal information – and you should.

Hold Big Corporations Accountable

You have the right to hold businesses responsible for safeguarding your personal information – and you should. 

Since we passed CCPA, two things have happened: First, some of the world’s largest companies have actively and explicitly prioritized weakening the law. Second, technological tools have evolved in ways that exploit a consumer’s data with potentially dangerous consequences. We believe using a consumer’s data in these ways is not only immoral, but it also threatens our democracy.

It is for this reason that we are proposing a November 2020 ballot measure to strengthen the law: the California Privacy Rights Act (CPRA) – it will
 give you the power to take back control of your personal information and will:

Protect Our Personal Information

Creates new rights allowing you to stop businesses using your sensitive personal information, including about our health or finances, or knowing and selling our location without our knowledge or consent.

Safeguard Our Children's Privacy

Triple CCPA’s fines for collecting and selling our children’s private information and would require opt-in consent to sell from consumers under the age of 16. 

Establish an Enforcement Arm

Establishes a new authority to protect these rights, the California Privacy Protection Agency. Increases transparency through this agency, giving consumers back control over their data.

Components Existing Law CPRA

Right to Know What Information a Business has Collected About You

Right to Say No to Sale of Your Info

Right to Delete Your Information

Data Security: Businesses Required to Keep Your Info Safe

Data Portability: Right to Access Your Information in Portable Format

Special Protections for Minors

Requires Easy “Do Not Sell My Info” Button for Consumers

Provides Ability to Browser with No Pop-Ups or Sale of Your Information

Penalties if Email Plus Password Stolen Due to Negligence

Right to Restrict Use of Sensitive Personal Information

Right to Correct Your Data

Storage Limnitation: Right to Prevent Companies from Storing Info Longer than Necessary

Data Minimization: Right to Prevent Companies from Collecting More Info than Necessary

Right to Opt Out of Advertisers Using Precise Geolocation (< than 1/3 mile)

Ability to Override Privacy in Emergencies (Threat of Injury / Death to a Consumer)

Provides Transparency Around “Profiling” and “Automated Decision Making”

Establishes California Privacy Protection Agency to Protect Consumers

Restrictions on Onward Transfer to Protect Your Personal Information

Requires High Risk Data Processors to Perform Regular Cybersecurity Audits

Requires High Risk Data Processors to Preform Regular Risk Assessments

Appoints Chief Auditor with Power to Audit Businesses’ Data Practices

Protects California Privacy Law from being Weakened in Legislature