How does the CCPA affect Howuku?
What is Howuku doing to prepare for the CCPA?
Because of the many product and process enhancements we made in preparation for the 2018 General Data Protection Regulation (GDPR), when the CCPA was signed we were already well-positioned to support customers needing to comply.
1. Privacy notice
Under the CCPA, businesses must update privacy notices to specifically state what data is collected, categorize the data collected, explain the purpose for the data’s use, identify third parties with which that data is shared, and communicate the rights available to an individual.
2. Personal information requests (right of access and deletion)
Under the CCPA, California consumers may have the right to request and receive a list of personal information and additional details a business collects (or has collected), as well as the intended business use for collecting this data.
The consumer may also be able to request that any specific personal information be deleted. With the exception of specific types of data (e.g. billing or other regulatory required information), these deletion requests must be fulfilled by you, the business.
Under CCPA, an IP address may be considered personal data if it can identify a household.
Howuku’s default behavior is that IP addresses of visitors are always suppressed before being stored to disk on our servers using Howuku's core feature set. We set the last octet of IPv4 addresses (all connections to Howuku are made via IPv4) to 0 to ensure the full IP address is never written to disk. For example, if a visitor's IP address is 18.104.22.168, it will be stored as 22.214.171.124. The first three octets of the IP address are only used to determine the geographic location of the visitor.
As always, your privacy and that of your users is a high priority for our team. We've built tools to make it easy for you to address requirements with the ever-evolving privacy laws—but if you have any questions with regards to these tools, please contact us at [email protected]