AB-2182: Privacy: Department of Consumer Affairs: California Data Protection Authority

Session: 2017-2018
Author: Levine
Status: Dead
AAP-CA Position: Other
To view the status of this bill on the State Website, click here.

This bill would require the Department of Consumer Affairs to establish the California Data Protection Authority to, among other things, adopt regulations as necessary to protect California residents, including regulations to standardize online user agreements to facilitate the removal of personal information from an edge provider database and to prohibit edge provider Internet Web sites from conducting potentially harmful experiments on nonconsenting users.This bill would state the intent of the Legislature to ensure that personal information can be removed from the database of an edge provider, as defined, when a user chooses not to continue to be a customer of that edge provider. This bill would also require a business that discloses personal information about a California resident pursuant to a contract with a nonaffiliated 3rd party to state in plain language in a privacy policy or user agreement that it may disclose personal information to a nonaffiliated 3rd party. This bill would condition compliance with the provisions described above by compliance with other state and federal law upon determination by the California Data Protection Authority, at least every 5 years, that those state and federal laws provide greater protection than these provisions.