Matomo Analytics and Matomo Tag Manager ensures full compliance to the California Consumer Privacy Act (CCPA) and other privacy laws worldwide. Below you will learn more about CCPA, whether it applies to your business, and how you can get CCPA compliance for Matomo Analytics.

What is CCPA?

The California Consumer Privacy Act (CCPA) is a law which lets California consumers see all of the personal data a company has collected and saved about them. The law also lets people sue the companies that have violated their privacy.

It is intended to enhance privacy rights and consumer protection for residents of California, United States. The CCPA became effective on January 1, 2020.

California residents worldwide are now provided with the right to:

  • Know what personal data is being collected about them.
  • Know whether their personal data is sold or disclosed and to whom.
  • Say no to the sale of personal data.
  • Access their personal data.
  • Request a business delete any personal information about a consumer collected from that consumer.
  • Not be discriminated against for exercising their privacy rights.

When should I care about CCPA compliance?

Any company or business that collects consumers’ personal data from California residents should comply with the CCPA, if they also satisfy at least one of the following thresholds:

  • Buys, receives, or sells the personal information of 50,000 or more consumers or households; or
  • Has annual gross revenues in excess of $25 million; or
  • Earns more than half of its annual revenue from selling consumers’ personal information.

How do I check if my business collected personal information on more than 50,000 California residents?

If you’re already using Matomo Analytics, you can check whether you have collected more than 50,000 visitors from the California region. In Matomo, select the last year in the calendar, then go to Visitors > Locations and under the “Region” report, you can search for “California”. You will then see how many visits you got from California in the last year. If you got more than 50,000 visits, you will know you very likely need to comply with CCPA.

To be compliant with CCPA and Matomo Analytics you will need to follow these steps:

We recommend you work with your legal team to review your CCPA compliance.

If you have any question or if you need help with your Matomo On-Premise setup contact us, we’re always happy to help.

Source used: CCPA (Wikipedia)

Previous FAQ: Configure Matomo Analytics for HIPAA compliance