Category Archives: Consumer Privacy

No On Prop 24


In 2018 , an initiative headed for the ballot led to a frantic and imperfect bargaining session in Sacramento. The outcome was the only comprehensive state consumer privacy law in the country, the California Consumer Privacy Act (CCPA).

As we pointed out then, CCPA, the result of the watering down of a stronger legislative proposal that had gotten marooned in the Legislature, had significant flaws. It was the best consumer privacy law in the country because it was basically the *only* consumer privacy law in the country.

Continue reading No On Prop 24

California AG submits New Privacy Rules at Deadline


Originally published in Communications Daily on June 3

“No changes from the last draft is good and bad, emailed Media Alliance Executive Director Tracy Rosenberg. Privacy advocates are glad the AG rejected many business requests that would have weakened CCPA but “disappointed that a few changes we recommended were not incorporated, including to accept browser do-not-track requests as opt outs.”

Continue reading California AG submits New Privacy Rules at Deadline

Coronavirus Sparks New Fight Over Privacy Law


By Dustin Gardiner originally printed in San Francisco Chronicle

California Attorney General Xavier Becerra’s office is gearing up to enforce the state’s landmark internet privacy law, despite pleas from business groups that say they aren’t ready because of the coronavirus pandemic.

The California Consumer Privacy Act gives people the power to tell companies not to sell their personal data and to demand they delete the information altogether. The law took effect Jan. 1, but enforcement was delayed until July 1 to give businesses time to prepare for a mountain of data requests from their customers.

Continue reading Coronavirus Sparks New Fight Over Privacy Law

Why Data Minimization Is The Privacy Principle We Need Now


Also published in the LA Progressive

We’ve written a lot about the adoption and implementation of CCPA, California’s state privacy law. We’ve told you about industry’s attempt to water the law down and the successful fight of privacy advocates to keep that from happening. We’ve told you about the loopholes that remain in this game-changing law.

Now, the novel coronavirus is raising the stakes once again. Sorely needed contact tracing is a service big tech is rushing to provide, and privacy protections are a seeming inconvenience.

But long after the spread of COVID-19 is contained, the data trove collected of our movements and associations will remain as an asset of great value to the companies, and a threat to our control over our personal information.

Continue reading Why Data Minimization Is The Privacy Principle We Need Now

Access Now Recommendations on Privacy In The Age of COVID-19


We’re highlighting this report from Access Now (lead author Estelle Masse) because it is one of the best summaries we have seen for how society can use data to fight COVID-19 without dumping privacy protections overboard.

Chock full of case studies (the good and the bad) and sensible recommendations.

Please read, share and pass it on.

Continue reading Access Now Recommendations on Privacy In The Age of COVID-19

Privacy Advocates Stay on CA AG to Tighten CCPA Rules


Privacy advocates, including Media Alliance, commented on the second iteration of operational rules for the California Consumer Privacy Act of 2018, which the AG hopes to begin enforcing on July 1, 2020.

The statewide coalition of privacy groups asked the AG not to back down on the start of the enforcement period, as some industry groups have asked, to require more transparency from data brokers, to enforce do not track software as equivalent to a filed opt-in request and to prevent service providers from forming comprehensive customer profiles.

Continue reading Privacy Advocates Stay on CA AG to Tighten CCPA Rules

Kick The Tires of the CCPA


In celebration of Data Privacy Day (earlier this week), and the operational start of the California Consumer Privacy Act (CCPA), privacy advocates invited CA legislators to take the law out for a spin.

Our practice companies: Tik-ToK, a youth-oriented social media network, and Experian, one of the 3 leading credit bureaus in the country

While legislators are trying out their new law, you can also join the impromptu test. See if you can find out what Tik-Tok and Experian have collected about you, and ask them to stop selling it, and tell us how it goes!

Continue reading Kick The Tires of the CCPA

Privacy Groups Comment on CA AG Privacy Regs


California’s statewide privacy coalition weighed in on the regulatory plans for the California Attorney General to administer and enforce the California Consumer Privacy Act.

The verdict? Pretty good job by Becerra’s office, but a few things can always be better. Like what?

*Clamping down on targeted advertising. Transfers of data for the purpose of targeted advertising are “sales”, even if the adtech industry wants to pretend they aren’t.

* Watch out for “risk to security” loopholes. CCPA already provides exceptions for security issues. They don’t need to be broadened any more.

*Limit pay for privacy. Dividing customers by “group” exacerbates the possibility of discrimination by group characteristics. Privacy harms manifest, like other kinds of discrimination, along societal divides. Privacy protections shouldn’t replicate existing discriminatory patterns.

*Data brokers are not service providers. The AG should not conflate the data exchange business with legitimate service providers. Not the same thing.