The CCPA: Security in the Digital Realm
Let me just say I didn’t choose to write about the CCPA, the other members of my group chose the more interesting topics before I had a chance to have my pick.
So lets talk about the CCPA, which has just gone into effect this year. Also known as the California Consumer Privacy Act, the CCPA is “a comprehensive consumer protection law intended to enhance privacy rights and consumer protection for residents in the state. This groundbreaking privacy law has set a new world of cybersecurity compliance into motion and shows no signs of slowing down.” Sounds fancy with alot of big Silicon Valley tech-y words, but its not so bad once you do a quick google search for dummies.
Ok so lets break it down in laymans terms:
The CCPA is basically allows consumers (us) to demand that certain businesses (Apple, Nintendo, Nordstrom) tell the consumer what information they have collected about them. It also allows consumers to force companies to delete whatever data they have collected. Moreover, companies must disclose to consumers what data they are collecting and sharing to third parties. It is also interesting to note that the article highlights that this law does not just apply to businesses that physically exist in California, but all businesses that sell in the state too.
The article I have chosen that is posted below goes into some of the logistics and details regarding the law, which businesses it is applicable to, and the most recent ammendments. While an interesting read for those unfamiliar with the law as I was, there is one detail that stuck out to me among all the law jargon.
According to the article, “many companies are aware that they are subject to the law, 85 percent say they have only partially implemented policies to comply or have done nothing to prepare, according to a recent poll conducted by cybersecurity management software provider, Apptega. Non-compliant businesses will not only face hefty fees but potentially adverse impacts to their brand, a loss of customers and negative PR. What’s even more concerning is many companies don’t know what data they even have on individuals or what they are doing with it.”
Interesting huh? Why are companies reacting in such a manner that could negatively impact their businesses and cost them? I am not tech savvy at all, but something about this just seems…odd. Does this imply that businesses are squeezing out every little tidbit of data and information from their consumers to devise a future marketing plan that relies on this type of information? Listen, I have no idea. But, I have watched Black Mirror and the internet can be a very scary and threatening place if your information falls in the wrong hands. In all, I believe this is a wise law that should be implemented across our nation, especially as more and more businesses are going digital. Let’s just hope that the rest of the nation catches on before we’re all stuck permanently working from home.
Full link to article: https://bit.ly/2UuAkOl
