California has recently passed transformative legislation aimed at tightening control over data brokers. Governor Gavin Newsom ratified the Delete Act (SB 362) on October 10, placing heavier disclosure and registration responsibilities on data brokers and furthering the protection of consumer data.
This new law compels data brokers to support deletion requests through a single, centralized “deletion mechanism” orchestrated by the California Privacy Protection Agency (CPPA).
This mechanism affords consumers unprecedented power, as it allows them to demand the deletion of their personal details from all registered data brokers through a single submission. This development marks an important shift towards empowering consumers to control the use and dissemination of their personal data.
Certainly, this marked pivot in policy raises important questions for data brokers. The increased responsibility, coupled with lofty expectations of transparency and compliance, may prove to be a significant challenge for many in the industry.
All professionals in the field of data brokerage should be aware of these changes and implications. As California often leads the way on progressive policy, this legislation could prove to be a yardstick for other regions considering similar privacy laws.