Updated: May 8
The California Consumer Privacy Act (CCPA) is a data privacy law that protects California consumers and gives them certain rights regarding their data. While the CCPA does not explicitly state that a business must have a cookie consent banner, it’s one of the simplest ways to keep up with its other rules and regulations, such as giving customers access to their data and providing specific information.
Businesses that operate out of California or handle data from California residents must follow these laws. It’s easy to do when you have a cookie banner that’s easy to understand with options to accept all cookies, decline cookies, and manage your preferences.
When viewing a traditional page from your laptop or desktop computer, you may think of a cookie banner as something on your website. However, these laws apply to mobile devices as well. Customers should be able to see and navigate your page and cookie banner easily, no matter which device they’re using. They will also have the ability to delete cookies from their device.
That doesn’t mean the cookie issue has been solved for you. Your company will still retain cookies according to the policy you’ve set forth on your cookie banner. This means that your customers’ devices will “forget” the information, such as logins, passwords, and browsing history.
Let’s look at how customers can delete cookies on their end – and then how you can manage cookies on yours.
Here’s how your customers delete cookies from their devices
Step 1: Open the web browser on a mobile phone. This could be Chrome, Firefox, Safari, or others. It depends on what phone type is used and what apps have been downloaded. Regardless, they all have a reasonably similar process regarding deleting cookies.
Step 2: Tap “Clear History and Website Data.” There is typically an option to delete some or all. Deleting cookies during a specific time frame may also be an option—for instance, the last hour or the last day.
Step 3: There will also be an option to clear cached images and files. That means pictures or other pieces of data besides cookies can also be deleted. It’s an extra step for safety or personal preference. For instance, if someone has saved a photo or file they no longer want to live on their browser, they can also get rid of it.
Step 4: Continue to use the mobile device as usual. This won’t affect how the mobile device works. The only difference is that the browser has “forgotten” certain things. If a username or password was saved, it might now be gone. While a minor inconvenience now, it could save a user later if their device is compromised.
As you can see, this is a super simple process. The bonus is that it can help customers manage how their data is stored on their personal devices, leaving them less vulnerable to security risks, hacks, or breaches. It’s a smart thing for any consumer to do.
Nicole Wong is one of the leaders of data privacy today and worked with the Obama team to manage security. Known as the “Decision Maker,” she has stated multiple times that customers are concerned about data leaks and security breaches, but most of all, they want to ensure that if their information has changed or needs to be modified, they want that control in their pocket. It makes sense, right? As a business owner, you want the most accurate and up-to-date information about your customers as possible. This makes it easier and more comfortable for everyone. It’s also lawful. Now that’s a bonus!
Regardless of your customers’ preferences to keep cookies stored on their personal devices or delete them, you are responsible for managing them (on the website side). That means when you collect customer data, like phone numbers, names, addresses, dates of birth, and more, you’ve got to keep it safe. If your cookie banner isn’t up to date, that can get complicated.
Automation can help you manage cookies, preferences, and consent while also keeping your end users’ needs in mind. If they correct or delete anything, it will pick that up right away and make the necessary changes.
Using automation to your advantage, keeping your cookies in order can be just as simple as your customers’ process. You can also use it to help manage Data Subject Access Requests (DSARs). A DSAR is when a customer requests information about the data you have stored, collected, used, or sold.
Within the law, you typically have about 45 days to complete this request and get that to them. However, with automation, you can get it to them in minutes! DSAR management technology allows you to automatically grab the information they’ve requested, verify they are the correct person, and then send it right along with minimal effort on your part.
This will keep you in compliance with the law – a good thing, considering that non-compliance could get your business fined or penalized by vigilant lawmakers.
A cookie banner from Adzapier can help keep your business compliant with CCPA and beyond. You’ll be able to manage cookies quickly, get customers the information they need, and show proof of consent to lawmakers if they are conducting an audit or investigation. Adzapier leverages automation to give you the most accurate results. And, as rules or laws change, our tools keep up with each difference.
Adzapier also offers session recording and geo-location. This will give you records of an actual transaction (a handy feature, especially for eCommerce businesses) and where it came from. Protect your business and your customers. Call one of our privacy experts today. We’ll even throw in 14 days of free compliance so you can see the value of a cookie banner for yourself.