CCPA-Exempt-Organization

PrivacyPortfolio is EXEMPT
from the California Consumer Privacy Act (CCPA)

Craig started PrivacyPortfolio to conduct privacy research and experiments as a privacy rights agent representing individual consumers within a Zero-Trust Architecture.

This icon informs website visitors that the organization is exempt from CCPA regulations.

I spoke at a Hearing for Public Comment held by the California Privacy Protection Agency (CPPA) in Oakland, Ca on August, 24, 2022. The CPPA is a State of California agency designated to enforce the CCPA regulations.

Speaking as an individual California Consumer, I commented that when I exercise my rights to have my personal information disclosed or deleted, sometimes I go through all the time and effort to make a verifiable consumer request, and then the company tells me they are exempt after leading me on -- pretending to be or acting as if -- it was CCPA-compliant. This happens quite often, and usually it's because companies don't want to publicize the fact their annual revenue falls below the threshold.

So, without framing my complaint in the form of a question, I commented, "I hope the CPPA can offer guidance when companies misrepresent themselves about honoring CCPA requests. I need to know whether my consumer complaint should be directed to the CPPA, or better handled as fraud through the Federal Trade Commission (FTC)".

The CPPA did say they would respond to all comments by email, so I'm patiently waiting to hear their response.

While this issue is unresolved, I decided to create this icon to put on my website, as an anti-nutrition label. It gives notice to all website visitors that even though my Privacy Policy requires me to honor consumers' digital rights, if you sue me, you will likely get nothing but a big legal bill.

If you think this notice is a good idea, feel free to copy and use the icon I created, or better yet, if you have better graphic skills, send me yours!