We’re 5 months into 2023. How are you doing on your company’s new year’s resolutions? Sorry—your Q2 KPIs! I’m sure you have set some great ones, but let us suggest one more: update your website’s privacy policy!
Sure, it’s not a sexy as “crush it!!” But hold on.
The California Privacy Rights Act (CPRA) went into effect on January 1, 2023, overturning the last four years of US privacy laws. This means that unless you were incredibly diligent and had excellent foresight, your website probably does not comply with THE most important online privacy law in the US.
But if you don’t transact business with our most populous state, the world’s 5th largest economy, then don’t worry about it. (Excuse the sarcasm.) Seriously though, even if you don’t operate to a degree in California where the CPRA applies to you, other states are creating their own laws using the CPRA as a guideline. Not to scare you—well, maybe a little—here’s an overview of a few recent developments:
| California (CPRA) | Active law | January 1, 2023 |
|---|---|---|
| Colorado | Signed into law | July 1, 2023 |
| Connecticut | Signed into law | July 1, 2023 |
| Virginia | Active law | January 1, 2023 |
| Utah | Signed into law | December 31, 2023 |
Not to mention all the other states with bills currently working their way through the legislatures: Hawaii, Iowa, Indiana, Kentucky, Maryland, Massachusetts, Minnesota, New Hampshire, New Jersey, New York, Oklahoma, Oregon, Tennessee, Texas, Vermont, and Washington.
There has also been a surprising momentum from the federal government to address these issues. As you may have seen during this year’s State of the Union address, one of the few topics everyone seemed united on was addressing the online privacy practices of businesses.
In order to comply with the CPRA, your policy will need to address sensitive personal information, sharing of personal information, and expanded user rights, to name a few. Be careful when drafting the policy without the help of an attorney, especially if your policy needs to apply in multiple jurisdictions. Any inaccuracies or missteps in compliance could spell trouble with the Federal Trade Commission and the California Privacy Protection Agency. These laws actually have teeth.
Schedule Your Website Audit and Update!
If you’re concerned about your website’s compliance with these new privacy laws, we offer an affordable website audit package starting at $5,000. Our team will review your website’s current privacy policy and terms of service and update or replace them to ensure compliance with the latest laws and regulations.
Don’t risk non-compliance and the potential legal consequences. Contact us today to schedule your audit!
