Privacy in the Digital Age
Navigating the World of Data Brokers: What You Need to Know
The California Data Broker Registry: What You Need to Know
If you’ve ever visited a Planned Parenthood, attended a specific house of worship, or patronized certain pharmacies in the continental United States, data brokers may have information about you. These data brokers collect and sell personal information to third parties, including anti-abortion activists and other organizations.
Recently, two data brokers, Near Intelligence and Outlogic, made headlines for their practices. Near Intelligence filed for bankruptcy in December, while Outlogic agreed to a settlement with the Federal Trade Commission to stop selling user location data. Both companies were among nearly 90 on the California data broker registry that self-reported selling data about individuals’ whereabouts.
California now requires data brokers to report if they collect location data, as well as personal data about children and reproductive health. This move aims to increase transparency and protect consumer privacy rights.
Data brokers can potentially harm individuals by selling information to bad actors, including scam artists and foreign governments. To protect privacy rights, California voters passed a ballot measure in 2020 that allows consumers to access, delete, or modify their data. The California Privacy Protection Agency enforces these rights and oversees the data broker registry.
The most recent changes to the registry require brokers to disclose if they sell data about children, pregnant individuals, or anyone’s geolocation. Additionally, a new law, the Delete Act, will allow consumers to delete their data from all registered brokers using a single tool or website by 2026.
While the California data broker registry sheds light on companies that collect and sell personal data, it is not yet comprehensive. Privacy advocates are pushing for stricter enforcement and more transparency in the data broker industry.
In the coming months, California will implement new requirements for data brokers, including public reporting on their websites about data requests and response times. The state’s privacy protection agency is working to ensure compliance and protect consumer privacy in the digital age.
