The California Consumer Privacy Act (CCPA) gives consumers the right to opt out of the "sharing" of their personal information. The law defines sharing as the disclosure of personal information for the purpose of "cross-context behavioral advertising," i.e., interest-based advertising.
If you are subject to CCPA and advertise on Facebook, and more specifically, if you are using Facebook Pixel for ad conversion optimization, allowing Facebook to collect browsing data through your website is considered to be sharing personal information, and you are obligated to honor California residents’ right to opt out.
On July 1, 2020, Facebook launched a CCPA compliance tool to help businesses that use Facebook Pixel to comply with the CCPA. Limited Data Use (LDU), when enabled, limits how Facebook processes the information it collects through Facebook Pixel.
We mentioned earlier that the disclosure of personal informationto Facebook Pixel collects is considered data sharing. LDU changes how Facebook processes the information it collects via Facebook Pixel so that the information collection will no longer be "shared."
Businesses can use LDU to communicate which of their users or website visitors are residents of California that have opted out of having their information shared with Facebook. Facebook will then process the information as a service provider. Their obligations as a service provider may be read in detail in their State-Specific Terms.
To enable the feature, you’ll need to tap into your developer team or brush up on your coding skills. Facebook has a detailed instructional on how to enable the Limited Data Use feature here.
You will ultimately need to add a link to your homepage for California website visitors that reads “Do Not Sell or Share My Personal Information”. This link should direct the user to a page where they can opt out by enabling LDU processing.
The Limited Data Use feature is applicable for the following services:
The LDU feature is automatically enabled for Facebook Custom Audiences.
If you cannot enable Facebook’s LDU feature, you’ll have to provide a way for your customers to opt-out of your business's sharing of their personal information.
Add a conspicuous link on your website that reads “Do Not Sell or Share My Personal Information”. This link should direct the user or website visitor to instructions on how to opt-out of any cookies associated with your third party vendors.
If you share email addresses with Facebook, a common practice for businesses that use Facebook’s Lookalike Audience service, you will need to provide consumers a way to opt out of the sharing of their email address.
We recommend providing a form for consumers to submit a Request to Opt-out. You’ll need to track these requests carefully to ensure you remove the appropriate personal information before you share your list to Facebook.
After 12 months you may ask a consumer to opt-in to the sale or sharing of their information.
Being CCPA compliant doesn’t have to take a lot of time. At TrueVault, we have tools that help businesses with their CCPA compliance. If you need any help, don't hesitate to contact us.
Disclaimer: This content is provided for general informational purposes only and does not constitute legal advice. This content is not a substitute for obtaining legal advice from a licensed attorney. The information on this page may be changed without notice and is not guaranteed to be complete, correct or up-to-date, and may not reflect the most current legal developments.
Our attorney-designed software will step-by-step guide you through the compliance process from start to finish.
Request a Demo201 Mission Street, 12th Floor
San Francisco, CA 94105
Email: hello@truevault.com
2022 © All Rights Reserved. Privacy Policy | Terms of Use | California Privacy Notice