CCPA / CPRA
California's privacy law, expanded by CPRA — the US benchmark for consumer data rights.
The California Consumer Privacy Act (CCPA), expanded by the California Privacy Rights Act (CPRA) effective January 2023, is the most far-reaching US state privacy law. It gives California residents the right to know, delete, correct, and opt out of the sale or sharing of their personal information.
Key requirement for any business serving California customers: a clearly visible 'Do Not Sell or Share My Personal Information' link, a privacy policy that lists data categories collected, and a process to respond to consumer rights requests within 45 days. Penalties run $2,500 per violation, $7,500 if intentional.
For short links: server-side click logs with hashed IPs are typically outside CCPA's scope. But Meta Pixel, Google Ads, and TikTok Pixel on your landing pages count as 'sharing' personal information for cross-context advertising — which means you need the opt-out link and Global Privacy Control (GPC) handling.
Related terms
What you should know next
GDPR
The EU's General Data Protection Regulation — in force since May 2018, with global reach.
Cookie Banner / Consent
Consent prompt for tracking cookies — required by GDPR in the EU and CCPA/CPRA in California.
IP Anonymization
Truncating the last octet of an IP address or hashing it — strips its status as personal data.
Start now — the free plan is free forever
Short links, QR codes, bio page and digital business card — all in one tool. GDPR-compliant, EU hosting.