CA AG Publishes Guide On Online Privacy Policies

State Attorney General Privacy/Cyber Risk & Data Security

On May 21, California AG Kamala D. Harris issued a guide providing recommendations to businesses affected by the 2013 amendments to the California Online Privacy Protection Act (CalOPPA). Those amendments require website operators to disclose how they respond to “do not track” signals or other mechanisms that provide consumers a choice regarding the collection of personally identifiable information (PII) over time and across different sites or online services. In developing an online privacy policy, the guide advises companies to use plain language, in an easily readable format, and to clearly and conspicuously identify and explain its online tracking and PII collection and sharing practices. Additionally, the guide recommends that policies provide (i) the choices a consumer has regarding the collection, use, and sharing of PII; (ii) a link to any privacy policy maintained by third parties receiving PII; and (iii) contact information for questions or concerns.