CLICK TO SHARE
California’s privacy law giving customers the right to their personal data is based on a European law that inadvertently lets hackers gain widespread access to people’s credit card numbers and home addresses.
The California Consumer Privacy Act went into effect Jan. 1 and effectively gives citizens the ability to obtain and delete whatever data companies have on them. It’s also based on Europe’s General Data Protection Regulation, or GDPR, which hackers are gaming to collect on people’s data.
“Soon after Europe’s law went into effect, in May 2018, a hacker gained access to the Spotify account of Jean Yang, a tech executive, and successfully filed a data request to download her home address, credit card information,” The New York Times’ Kashmir Hill wrote Wednesday.
Companies that collect the personal information of 50,000 people and those with annual revenues of $25 million or more are required to fork over the data upon request.
Vendors like Berbix ask people to upload photos of government-issued identification and take a selfie to verify the identify of those making requests for such data, Hill noted. Berbix also asked requesters to take another photo of themselves as a secondary form of verification.
Anonymous comments are welcome, just check the "Comment Anonymously" box before submitting your comment. Note: Comments are free and open until someone ruins it. Don't dox, promote violence, etc. Be nice and have fun.
CLICK TO SHARE