Delicieuxz
[H]ard|Gawd
- Joined
- May 11, 2016
- Messages
- 1,667
Today is a great day for data ownership and privacy rights, because, as of today, California's Consumer Privacy Act (CCPA) comes into force in California, greatly strengthening data and data-privacy rights for Californians and beyond.
Microsoft has posted that they will apply California's new CCPA rules nationwide in the US: Microsoft will honor California’s new privacy rights throughout the United States
But I wouldn't be too quick to assume that Microsoft is doing this out of the goodness of their greedy, corporate, data-coveting hearts, and Microsoft conspicuously doesn't mention anything regarding applying the same treatment to the rest of the world in their post. Microsoft, which makes huge money stealing your personal data from your computer through Windows 10 and various Microsoft services, reportedly was one of the tech companies that originally tried to prevent CCPA from becoming a California ballot box initiative. See ***** below for more information about California ballot box initiatives
So, why might Microsoft be openly supporting CCPA rules and applying them US-wide? It could be a case of 'if you can't beat them, join them - and then twist them in your favour'. After all, Microsoft is the company which coined the phrase "Embrace, extend, and extinguish".
And it isn't just Microsoft that are trying to get in-front of any new data rights protections: Tech industry titans suddenly love internet privacy rules. Wanna know why? We'll tell you
Companies that make millions and billions of dollars each year by pilfering your data and applying it to their own technology operations or selling it either in raw or aggregated form to 3rd-parties (including researchers, governments, advertisers, police, and pretty much whoever else has the money to pay for it) see newer data rights protection laws as a threat to their profits but inevitable and so they want to get in-front of their implementation to shape their designs in a way that will favour their companies' continued profiteering on your personal data. They want new data laws to get in the way of their unfettered data-theft practices as little as possible.
The CCPA is already stronger legislation than Europe's GDPR, which, while a positive movement and being an important catalyst for data and privacy rights awareness, I've thought to be largely toothless and the minimum possible to be done while still not restricting data-harvesting and not giving data-owners solid control over their data property.
But the sponsors behind California's new law are going even further than the CCPA, with their announced California Privacy Rights Act (CPRA), which is an updated, fortified, and extended version of the CCPA that will address more recent data privacy exploit tactics and grant a bunch more important rights to data-owners that were missing in the CCPA, such as denying the collection of anything beyond what is absolutely necessary for a user-requested service to function.
The CPRA will also establish a California Consumer Privacy Protection Agency to protect data-owners.
The CPRA is intended be put to a ballot initiative, circumventing the possibility of its proposals being watered-down in California's legislature, as happened with the CCPA.
***** Ballot box initiatives: California has a wonderful law that enables average, non-politician Californian residents to create new laws in California by securing a certain number of signatures in support of the legislation proposal. And if the required number of signatures is received for a proposed legislation, then that proposed legislation goes to a ballot where all the residents of California get to vote on it. And if it passes the California-wide vote, then it becomes law in California.
Likely to ward-off a ballot box initiative regarding the proposed CCPA data-protection legislation, the California legislature unanimously passed a watered-down version. If California's legislature had not done that, then those sponsoring the CCPA, which had the required number of signatures to put their legislation proposal to a ballot initiative, would have put the matter to a California-wide referendum and then their stricter proposed legislation would have certainly passed, because, well, people logically value and want their privacy and want to control their own data.
------------------------------ newsletter from Californians for Consumer Privacy ------------------------------
The California Consumer Privacy Act (CCPA) goes into effect today!
The most sweeping consumer privacy legislation in the nation grants new data privacy rights for every Californian.
Here are your new rights:
We are circulating a new initiative called the California Privacy Rights Act (CPRA)
Here's why:
Since we passed CCPA, two things have happened: First, some of the world’s largest companies have actively and explicitly prioritized weakening the law. Second, technological tools have evolved in ways that exploit a consumer’s data with potentially dangerous consequences. I believe using a consumer’s data in these ways is not only immoral, but it also threatens our democracy.
CPRA would:
Microsoft has posted that they will apply California's new CCPA rules nationwide in the US: Microsoft will honor California’s new privacy rights throughout the United States
But I wouldn't be too quick to assume that Microsoft is doing this out of the goodness of their greedy, corporate, data-coveting hearts, and Microsoft conspicuously doesn't mention anything regarding applying the same treatment to the rest of the world in their post. Microsoft, which makes huge money stealing your personal data from your computer through Windows 10 and various Microsoft services, reportedly was one of the tech companies that originally tried to prevent CCPA from becoming a California ballot box initiative. See ***** below for more information about California ballot box initiatives
So, why might Microsoft be openly supporting CCPA rules and applying them US-wide? It could be a case of 'if you can't beat them, join them - and then twist them in your favour'. After all, Microsoft is the company which coined the phrase "Embrace, extend, and extinguish".
And it isn't just Microsoft that are trying to get in-front of any new data rights protections: Tech industry titans suddenly love internet privacy rules. Wanna know why? We'll tell you
Companies that make millions and billions of dollars each year by pilfering your data and applying it to their own technology operations or selling it either in raw or aggregated form to 3rd-parties (including researchers, governments, advertisers, police, and pretty much whoever else has the money to pay for it) see newer data rights protection laws as a threat to their profits but inevitable and so they want to get in-front of their implementation to shape their designs in a way that will favour their companies' continued profiteering on your personal data. They want new data laws to get in the way of their unfettered data-theft practices as little as possible.
The CCPA is already stronger legislation than Europe's GDPR, which, while a positive movement and being an important catalyst for data and privacy rights awareness, I've thought to be largely toothless and the minimum possible to be done while still not restricting data-harvesting and not giving data-owners solid control over their data property.
But the sponsors behind California's new law are going even further than the CCPA, with their announced California Privacy Rights Act (CPRA), which is an updated, fortified, and extended version of the CCPA that will address more recent data privacy exploit tactics and grant a bunch more important rights to data-owners that were missing in the CCPA, such as denying the collection of anything beyond what is absolutely necessary for a user-requested service to function.
The CPRA will also establish a California Consumer Privacy Protection Agency to protect data-owners.
The CPRA is intended be put to a ballot initiative, circumventing the possibility of its proposals being watered-down in California's legislature, as happened with the CCPA.
***** Ballot box initiatives: California has a wonderful law that enables average, non-politician Californian residents to create new laws in California by securing a certain number of signatures in support of the legislation proposal. And if the required number of signatures is received for a proposed legislation, then that proposed legislation goes to a ballot where all the residents of California get to vote on it. And if it passes the California-wide vote, then it becomes law in California.
Likely to ward-off a ballot box initiative regarding the proposed CCPA data-protection legislation, the California legislature unanimously passed a watered-down version. If California's legislature had not done that, then those sponsoring the CCPA, which had the required number of signatures to put their legislation proposal to a ballot initiative, would have put the matter to a California-wide referendum and then their stricter proposed legislation would have certainly passed, because, well, people logically value and want their privacy and want to control their own data.
------------------------------ newsletter from Californians for Consumer Privacy ------------------------------
The California Consumer Privacy Act (CCPA) goes into effect today!
The most sweeping consumer privacy legislation in the nation grants new data privacy rights for every Californian.
Here are your new rights:
- The right to know what personal information a business has collected about you.
- The right to say no to the sale of your information.
- The right to delete your information.
- The right to access your information in a portable format.
We are circulating a new initiative called the California Privacy Rights Act (CPRA)
Here's why:
Since we passed CCPA, two things have happened: First, some of the world’s largest companies have actively and explicitly prioritized weakening the law. Second, technological tools have evolved in ways that exploit a consumer’s data with potentially dangerous consequences. I believe using a consumer’s data in these ways is not only immoral, but it also threatens our democracy.
CPRA would:
- Create new rights around the use and sale of sensitive personal information, such as health and financial information, racial or ethnic origin, and precise geolocation.
- Provide enhanced protection for violations of children’s privacy by tripling CCPA’s fines for breaking the law governing collection and sale of children’s private information and would require opt-in consent to collect data from consumers under the age of 16.
- Require much-needed transparency around automated decision-making and profiling, so consumers can know when their information is used to make adverse decisions that impact lives in critical ways, including employment, housing, credit, and even politics.
- Establish a new authority to protect these rights, the California Privacy Protection Agency, which will simultaneously enforce the law and provide necessary guidance to industry and consumers, many of whom are struggling to protect themselves in an increasingly complex digital ecosystem, where hacking and identity theft remain a terrible problem.
- Most importantly, it would enshrine these rights by requiring that future amendments be in furtherance of the law, even though I am only setting the threshold to amend at a simple majority in the legislature. While amendments will be necessary given how technically complex and fast-moving this area is, this approach respects the role of the legislature while still providing substantial protections for Californians from attempts to weaken the law and their new human rights.
Last edited: