CalOPPA: California Online Privacy Protection Act
"The state of privacy legislation in the United States is pretty shocking: there’s no overarching federal data privacy law at all." - Commercial Use
"The United States lags far behind Europe & the UK, and even behind many up-and-coming economies in Southeast Asia.
The primary data privacy law in the US that applies generally, rather than to a specific privacy field such as health or children’s privacy, is a state law rather than a federal law: the CalOPPA.
"
How to comply with CalOPPAFirst, ask if CalOPPA applies to your business? CalOPPA applies to operators of commercial websites or online services that collect “personally identifiable information through the Internet about individual consumers residing in California“.
It applies if your business is a SaaS app, a mobile app, a Facebook app, and so on.
In 2012, the California Attorney General issued an agreement with mobile app providers that stated that the CalOPPA law also applies to mobile apps.
“Personally identifiable information” for the purposes of CalOPPA includes:
- Individual’s first and last name
- Home or physical street address
- An email address
- A telephone number
- A Social Security number
- Or any other information that permits a specific individual to be contacted physically or online
- Person’s birthday
- Height, weight, hair color
- Anything else about the individual that’s collected online and stored by an operator in personally identifiable form."
[ from: https://termsfeed.com/blog/caloppa/ ]