Quoted

October 6th, 2023

Will California’s New Law Aimed at Data Brokers Require a “Delete Me” Button on All Websites?

Privacy & Data Security Chair Daniel M. Goldberg is quoted in the article, "Will California’s New Law Aimed at Data Brokers Require a “Delete Me” Button on All Websites?" published by Cybersecurity Law Report. The article discusses the newly-formed "Delete Act," which will allow California residents to delete their information from data brokers. Daniel is quoted saying, "[c]omplying with a more comprehensive deletion requirement may challenge data brokers. To delete “all” data, the broker would need the user to provide additional personal details to help locate other personal data stored in its systems. Companies often store a user’s device-identifying data – that which is collected through trackers and pixels, for instance – separately from traditional personal information like name and email address. Those data points are often not linked to the same consumer in the system but could all be subject to the deletion request."

Daniel notes, "[t]he Act sets out limited exceptions to the deletion requirements, which track those provided by  the CPRA. The Act does not require the data broker to delete personal information where reasonably necessary to ensure security and integrity. These exceptions are incredibly important as some data brokers focus on activities that preserve the effectiveness of the broader internet."

Read the full article here. (Behind paywall)