Publication | ThinkSet, issue 6
California’s Consumer Privacy Act: GDPR with Extra Litigation
Peggy Daley and Michael Bandemer
Here’s a prediction you can bank on: Come Wednesday, January 1, 2020, legions of internet users will be at their computers hunting for the personal data companies have collected about them, ordering the companies to stop selling it and even demanding it be deleted—all rights granted to them by the California Consumer Privacy Act (CCPA), a statute akin to Europe’s General Data Protection Regulation (GDPR) and scheduled to take effect that day.
While the bill has won praise for its consumer-protection provisions—State Senator Bob Hertzberg, a Democrat from the San Fernando Valley, called it “a huge step forward for people across the country”—not everyone is so enthusiastic. A top Google official said the bill’s ramifications are “really difficult to understand.”