What Compliance Obligations do California Data Brokers Typically Have?

Businesses that qualify as data brokers in California may be required to comply with several regulatory obligations.

These may include:

• Registering annually with the California Privacy Protection Agency (“CPPA”).

• Paying a required registration fee.

• Providing disclosures about data broker activities.

• Responding to consumer deletion or opt-out requests where applicable.

The California Delete Act also introduces requirements intended to simplify consumer requests to delete personal information held by data brokers.

Organizations that meet the definition of a data broker should ensure that registration and governance procedures are implemented and documented.

For implementation guidance, governance documentation templates, and audit-readiness support, visit the CLIClaw Data Broker Compliance Library.