Microsoft promises to "honor" California's comprehensive privacy laws across the United States

On Monday, Microsoft announced that it would respect the "core rights" granted to Californians through the state's landmark privacy policy and expand that coverage throughout the United States.

In a blog post on Monday, Julie Brill, Microsoft's head of privacy, said the company will expand the principles of the California Consumer Privacy Act (CCPA) across the United States, just as it did last year's General Data Protection Regulation (GDPR). The Act comes into force in California on January 1, 2020.

The CCPA, which was approved in June 201[ads1]8, is one of the strongest and most comprehensive data privacy regulations in the United States. It is similar to GDPR. Under the CCPA, companies must inform users about what personal information is collected, whether they are sold and to whom, and allow users to opt out of any sale. Users must also have access to their data and be able to request that a company delete them.

"Under the CCPA, companies must be transparent about data collection and use, and give people the opportunity to prevent their personal information from being sold," Brill wrote. "Exactly what will be required under the CCPA to achieve these goals is still evolving."

Brill went on to say that Microsoft will closely monitor all changes in how the government asks companies to enforce the new CCPA transparency and control requirements.

CCPA has been the subject of many privacy struggles both in the California state legislature and Congress. The Senate and the House of Representatives are in the midst of their own privacy battle against the data with new bills being proposed every couple of weeks. Many Democratic lawmakers argue that any national law should allow California to be a basic line and extend protection across the country and add more protection if necessary. Republicans and industry stakeholders disagree and are largely convinced that the CCPA is going too far and any federal law should cancel it and other state laws to avert a "patchwork" of privacy regulations.

"CCPA marks an important step toward giving people more robust control over their data in the United States," Brill wrote. "It also shows that we can make progress in strengthening privacy protection in this country at the state level even when Congress cannot or will not act."

Source link

Back to top button