In January of 2020, marketers and businesses alike will be required to comply with the new California Consumer Privacy Act (CCPA), a sweeping privacy bill signed into law by the Governor of California in 2018. On the heels of another groundbreaking privacy law, the European General Data Protection Regulation, many who do business in California are already in the right mindset to handle complying with the new privacy standards.

While the CCPA covers only California, in coming into compliance with the law, many companies are already tightening their privacy standards in the US mostly as a result of already having to comply with the strict rules of the GDPR. There are a number of similarities between these two privacy legislations, which are both aimed at trying to keep consumer’s privacy at the forefront of internet security.

So what is similar beyond the fact that both laws are aimed towards a similar goal? For one, both laws require that a website have and display a privacy policy. Both laws also regulate cookies and the use or sale of personal data acquired by the website. While ambiguous statements and applied consent used to work for a number of websites and online services, under both of these laws that is no longer the norm. 

The manner in which these two laws execute their goals is where the differences are to be found. Perhaps the most stark difference between the two, and the one thing that may hit marketers the hardest is how the GDPR requires consumers to opt-in to cookies. The CCPA makes these an opt-out item, making the GDPR a bit more hard-hitting for websites, especially when consumers are informed and no longer want to participate. 

Thankfully, companies who choose to use a certain personalization software don’t have to worry about these changes or the fees that go along with them. Complete GDPR compliance makes it simple for companies to rest easy knowing they are compliant.

Other differences, such as exactly who the law applies to, and what exactly the fines are for breaking this law, exist between the two. Disclosures regulated in the CCPA require more description and links to options for consumers have to be clear and conspicuous. 

And while there are a number of smaller differences and similarities, the fact remains that laws are moving towards a tighter hold on privacy rights for consumers. Regardless of where a company does business, compliance is something that will be required sooner or later. Making privacy and security a priority now just makes good sense.

Leave a Reply

Your email address will not be published. Required fields are marked *