The new bill reinforces that all data brokers must register with the California privacy protection agency, and it requires the CPPA to establish an easy and free way for Californians to request that all data brokers in the state delete their data through a single page, regardless of how they acquired that information. If data brokers don’t comply with these rules, the bill stipulates they be fined or otherwise penalized.

Hopefully this becomes the standard nation wide. Having a single page where you can delete your accounts on multiple services with a single click sounds like a data privacy dream.

  • kibiz0r
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    CCPA covers PII, so no — a soft delete of PII would be laughably unacceptable.

    But you may be thinking of deidentification, which is valid as long as you aren’t accidentally contaminating it with PII… which is such a hard guarantee to uphold, that a lot of businesses are already erring on the side of deleting data that they’re actually permitted to retain — and partitioning anonymizable data from PII, making it more cumbersome to incorporate PII into analytics, too.