On October 30, 2012, California Attorney General Kamala Harris announced efforts on behalf of her office to notify as many as 100 mobile app developers that their apps’ privacy policies do not comply with California’s Online Privacy Protection Act (OPPA). These app developers have 30 days to bring their apps and websites into compliance or they could face fines of up to $2500 each time a noncompliant app is downloaded by a California consumer.
In light of the Attorney General’s announcement and California’s continued focus on privacy, companies whose websites or apps collect personal information online from California residents should take steps to ensure that they are in compliance. Because OPPA applies to any company that collects data online about California residents, companies located within and outside of California may be subject to enforcement activity.
- First and last name
- Home or other physical address, including the street name and the name of a city or town
- E-mail address
- Telephone number
- Social security number
- Any other identifier that permits the physical or online contacting of a specific individual
- Categories of PII that the website, online service, or app collects from its users
- Categories of third parties with whom PII may be shared
- The process by which users can review and request changes to their PII if the website operator, online service provider, or app developer maintains such a process