The California Consumer Privacy Act (CCPA), as amended by the California Privacy Rights Act (CPRA), gives California residents powerful rights over their personal information:
Right to Know: What data businesses collect, use, share, or sell about you
Right to Delete: Request deletion of your personal information
Right to Opt-Out: Stop the sale or sharing of your data
Right to Correct: Fix inaccurate personal information (CPRA)
Right to Limit: Restrict use of sensitive personal information (CPRA)
No Retaliation: Businesses cannot deny service for exercising rights
Private Right of Action - Data Breaches Only
While most CCPA violations are enforced by the Attorney General, you can sue directly for DATA BREACHES involving certain personal information if the business failed to implement reasonable security. Statutory damages: $100-$750 per consumer per incident, OR actual damages (whichever is greater).
1 Your Information
2 Business Information
3 Request Details
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
✓
Data Breach Damages Estimator
Statutory damages for CCPA data breach claims (Civil Code § 1798.150)
Potential Statutory Damages Range
$100 - $750
Per consumer, per incident. Actual damages if greater.
4 Generate Documents
Document Disclaimer:
These are templates only. Requirements and procedures may change. Verify current requirements before submitting. The accuracy and appropriateness of these documents is not guaranteed.