Frequently Asked Questions and Answers from Termly’s Legal Experts

How is the CCPA enforced?

The CCPA is enforced by the California Attorney General’s office sending letters to businesses that fail to comply with the law. Non-compliant businesses then have 30 days to fix the alleged violations. If they fail to do so, they will be fined up to $2,500 per consumer for unintentional violations, and $7,500 per consumer for intentional violations.

The California Attorney General’s office began sending out enforcement notices on July 1st, 2020. Although the AG has sent letters to businesses from all types of industries, their main targets have been companies with the following characteristics:

Businesses that operate mostly online and lack CCPA-required privacy documents
Businesses that sell personal information but don’t provide a Do Not Sell My Personal Information link
Businesses that have received privacy complaints from California consumers on social media or elsewhere

Related Questions

Are email addresses personal data? Do I need a cookie policy on my website? Do you need consent for cookies? Does CCPA apply to B2B businesses? Does GDPR apply to companies or individuals? Does GDPR apply to EU citizens in the US?

Comply with the CCPA as soon as possible to avoid fines.

Confirm whether you need to comply with the CCPA as soon as possible, so you can implement appropriate privacy measures and avoid fines.

Trusted by Thousands

Trusted by thousands of companies worldwide, Termly’s intuitive software generates legal policies and handles consent management for any business in minutes.

Try Termly’s Compliance Solutions For Free!

Get Compliant

Termly allows our users to focus more on their business instead of spending countless hours figuring out data privacy compliance. - Jona, Senior Product Manager @ Termly