California Online Privacy Protection Act of 2003 (CalOPPA)
CalOPPA was one of the first laws in the United States that was created to govern the privacy rights of U.S. consumers on websites. CalOPPA applies to an operator of a commercial website that collects the PII of residents of California. It is important to note that this law can apply to you, regardless of where your business is located, as long as your website collects the PII of California residents.
Identifies the categories of PII that the website collects and the categories of third parties with whom the PII is shared;
If you maintain a process for consumers to review and request changes to their PII, provides a description of that process;
Identifies its effective date;
Discloses how the website responds to “do not track” signals or other mechanisms that provide consumers the ability to exercise choice regarding the collection of PII and about their online activities over time and across third-party websites, if you engage in such collection; and
Discloses whether other parties may collect PII about a consumer’s online activities over time and across different websites when a consumer uses your website.