Explore the Do Not Sell or Share Interactive Guide

Morgan Sullivan

April 26th, 2023 · 1 min read


Understand your obligations under CPRA Do Not Sell or Share

The CPRA Regs have been finalized—with significant updates to the requirements around Do Not Sell or Share, many of which are more technical than those found in the CCPA.

The modified regs require, among other things, that businesses consider: 

  • Whether they’re selling or sharing consumer data via offline or backend processes

  • Whether visitors can create accounts or log-in on their website (meaning the business must maintain a record of that visitor to ensure their opt-out is honored on future visits)

  • The use and disclosure of sensitive personal information (SPI)

  • The role of financial incentive programs

And the list goes on. When it comes to implementation, Do Not Sell or Share is one of the more complex sections of the modified regs. 

That’s why we built this interactive visual guide. Use it to better understand where your company’s data processing falls under the CPRA modified regs and what steps your team should take to ensure compliance. 

This guide includes:

  • A guided questionnaire with interactive checkboxes to track your progress

  • Top-level guidance for how to respond to each requirement

  • Recommended resources to ensure robust compliance

Download the full guide to get started. 



Discover more articles

Data Minimization for GDPR and CPRA

Data Minimization for GDPR and CPRA

Data minimization, in the context of privacy laws like GDPR and CPRA, is defined by whether it’s reasonable and proportionate to the task at hand. 

April 14th, 2023 6 min read

5 key takeaways from the CPRA modified regulations

5 key takeaways from the CPRA modified regulations

Explore 5 key takeaways from the CPRA modified regulations, including updated language around consumer consent, opt-out, and more.

April 6th, 2023 9 min read