What is the CCPA law? What are the consequences of not complying?
Similar to the Massachusetts data breach notification law that went into effect in April, and GDPR before that, CCPA is the latest in a line of user data compliance regulations designed to better protect the data of consumers while they browse the internet. These laws are a direct response to the lack of progress at the federal level for appropriate consumer protections and should serve as a reminder for companies to conduct privacy audits and cross-checks to ensure consumers’ personal data is protected.
Non-compliance results in a hard dollar cost on a per-record basis. The household names and larger players, like Facebook, that were affected by privacy laws earlier this year made headline news and incurred fees in the millions. Any company that touches user data must be playing an active role in order to safeguard both their customers and their end-users’ privacy rights, to avoid what could be crippling fines from the FTC in 2020.
Might we see similar laws in the future?
We can absolutely expect to see other US states follow in California’s lead when it comes to data privacy legislation. Technology certainly is a big business driver, but the act of building in security practices from the outset of tech adoption is still a challenge many organizations face.
Security, for many, is still an afterthought – instead of an enabler to ensure consumers’ private information is adequately protected. What becomes an even more interesting question is how this is legislation is enforced, and whether other US states mirror the language in the CCPA or create their own restrictions. Without a governing body standardizing this type of regulation on a national scale, compliance could quickly become a tangled web for enterprises to navigate here in the States.
What might be the impact on companies who rely on data for Marketing purposes?
Following the enaction of CCPA in January, security as a business function will move from the shadows and be front and center, getting a well-deserved audience in the C-suite. The CIO and CISO roles will continue to emerge as a key voice in this broader data privacy discussion, ensuring all departments are strategically aligned. The broader space will learn that it is not immune to data compromise, and marketers who rely on data will need to build authentic connections with their customers – whose familiarity and comfort with the brand will be more important than ever. Personalization will need to evolve beyond device IDs, cookies, and macros to truly provide the information consumers will find valuable, and deliver it to them in the formats they prefer.
Jude has spent the last twenty years working with some of the world’s largest software companies. He has been the CEO of Localytics for the past two years, leading the company to become a leading digital intelligence platform.
Previously Jude was President of Mobile at Avast Software, a mobile cyber security company with over 400M users worldwide. He also served as Vice President & General Manager of Mobile for Nuance Communications, the leader in text, voice, and natural language technology in the mobile market. Before that Jude was Mobile and Consumer Group Vice President at TomTom where he successfully led acquisitions in building the company’s location-based services portfolio.
Localytics is the leading mobile engagement platform. We give companies the insights and tools they need to improve their mobile app acquisition, engagement and retention efforts. Our secret sauce is in the data. We use all the data surrounding users to deliver highly targeted and personalized engagement campaigns, including push and in-app messages.
We then use performance data to measure and optimize those efforts toward the metrics that drive businesses forward. Our platform is used in more than 37,000 apps on more than 2.7 billion devices by companies such as ESPN, Fox and The New York Times.