Californians Take Action with CCPA To Protect Their Privacy; Proprietary DataGrail Research Finds that 50% of Requests Made Are to Restrict the Sale of Personal Information
SAN FRANCISCO, Sept. 15, 2020 /PRNewswire/ -- Today, DataGrail, a leading privacy management platform, released its Mid-Year CCPA Trends Report, which uncovers how the California Consumer Privacy Act (CCPA) is affecting consumers and businesses. The proprietary research finds that people are regularly opting-out of companies who sell their personal information, with "do-not-sell" being the most commonly exercised right, occurring nearly 50% of the time over access and deletion requests. DataGrail automates the process of fulfilling data subject requests (DSRs), giving it unique insight into the number of requests processed by companies.
Research Highlights Include:
83% of consumers expect to have control over how businesses use their data, and this research confirms that people are taking action to control their privacy by exercising rights provided by the CCPA. Consumers are accessing their data (21%), deleting their data (31%) and requiring that businesses do-not-sell their personal information (48%). When CCPA went into effect in January 2020, DataGrail saw people exercise their rights immediately, with a surge of data subject requests (DSRs) going across its platform in January 2020.
Since the initial surge, DSRs have stabilized around 13 DSRs per million records every month, a substantial rate which confirms that organizations need an established privacy program. Gartner data shows that manually processing a single DSR costs on average $1,406. At this rate, organizations can expect to spend almost $240,000 per million records to fulfill DSRs — if they are done manually. Additionally, organizations could find themselves on the hook for fines likely to appear in October (if CCPA follows the same timeline as GDPR).
Fraud is a top concern for organizations who process DSRs— no organization wants to send personal information to the wrong person or someone who might be impersonating one of their customers. DataGrail's Smart Verification technology tracks how many unverified (and potentially fraudulent) DSRs go through the platform. They also found that 3 out of every 10 DSRs will likely not be verified and could be fraudulent attempts at accessing or deleting data.
When breaking down unverified requests (access vs. deletion), the data shows that access requests (DSARs) make up 70% of the unverified requests. This finding offers validity to the concern that nefarious characters could be submitting access requests to gain access to another person's personal information.
These connections provide organizations with an accurate, real-time view of the internal systems and third-party applications used and all the personal data that maps onto each of those systems. DataGrail also allows customers to manage their privacy request workflows and email preferences across applications.
Contact: Alicia Divittorio, firstname.lastname@example.org
View original content to download multimedia:http://www.prnewswire.com/news-releases/californians-take-action-with-ccpa-to-protect-their-privacy-proprietary-datagrail-research-finds-that-50-of-requests-made-are-to-restrict-the-sale-of-personal-information-301130799.html