1. All Collections
  2. CCPA Compliance/California
Image

CCPA Compliance/California

Avatar

By Italo Ribeiro

August 19, 2025

What is CCPA Compliance?


CCPA compliance means following the rules set out in the California Consumer Privacy Act (CCPA), which grants California residents rights over their personal information. Businesses must be transparent about data collection, give consumers control over their data (like requesting access, deletion, or opting out of sales), and implement privacy practices to protect that information.


How to Make Your Everbee Store CCPA Compliant


1. Audit Your Data Collection

  • Identify all types of personal data collected on your site (e.g., names, emails, device info, browsing behavior).
  • List where and how this data is collected (contact forms, cookies, analytics tools).


2. Post a “Do Not Sell or Share My Personal Information” Link

  • Add a prominent link labeled “Do Not Sell/Share My Personal Information” on your homepage/footer.
  • The link should lead to a form or page for consumers to opt out of data sale/sharing.


3. Update (or Create) a CCPA-Compliant Privacy Policy

  • Clearly disclose what personal data you collect and how you use, share, or sell it.
  • Describe consumers’ rights under the CCPA and instructions for exercising those rights.
  • Update this policy annually and place a conspicuous link to it on your website (usually in the footer).


4. Provide Notice “At or Before Collection”

  • Categories of information collected.
  • Purpose for collecting it.
  • Whether it will be sold or shared.
  • This notice should appear near any form, sign-up, or checkout page.


5. Add Methods for Data Requests

  • Offer at least two ways for consumers to request access, deletion, or correction (e.g., email, phone, webform).
  • Create a process to respond to requests within 45 days.


6. Honor Opt-Out and Data Deletion Requests

  • Implement mechanisms to process and fulfill opt-out, access, and deletion requests.
  • Update all downstream processors and third parties when data is deleted or restricted.


7. Secure Collected Information

  • Adopt reasonable security procedures to protect personal information from unauthorized access.


8. Get Parental Consent (Minors)

  • For users under 16, obtain explicit consent before selling personal data.
  • For those under 13, parental or guardian consent is required.



By following these steps, your website will align with CCPA’s core requirements and help you build trust with users.

For further assistance, reach out to hello@everbee.io.




IMAGE