CCPA Ready · How-to

How to comply with US state privacy (CCPA/CPRA)

CCPA/CPRA (California) plus 10+ newer state laws require a privacy notice, a "Do Not Sell or Share" link, honoring opt-out signals, and consumer data rights. Check yours.

Step by step

Work through these — each is a place compliance is won or lost. CCPA Ready's checker verifies every one for you in about a minute.

  1. Published privacy notice, reviewed in the last 12 months?
  2. Do you sell or 'share' personal info (incl. ad cookies)?
  3. Do you honor opt-out preference signals (GPC)?
  4. Can consumers request access/deletion/correction?
  5. Do you disclose data categories + purposes?
  6. Discounts in exchange for data (loyalty)?
  7. Do you avoid penalizing users who exercise rights?

The fast way

🪿 Don't do it by hand. The free CCPA Ready checker walks you through each step, flags exactly what's missing, and Clause drafts the fix for you — then re-check until you're clear. No signup, runs in your browser.

What's at stake if you skip it

⚠️ Exposure: $2,500/violation — $7,500 if intentional or a minor · Status: In force. Every rule's penalty →

The source

RuleGoose checks this against the California CCPA/CPRA + US state privacy laws. Read it yourself: California AG — CCPA →

Check your US state privacy (CCPA/CPRA) compliance — free.
See exactly which steps you've missed and draft the fix in about a minute. Run the CCPA Ready checker →

or read the full US state privacy (CCPA/CPRA) guide, or get one RuleGoose Score across every rule.

Informational only, not legal advice, and not affiliated with California or the FTC. Last reviewed 2026-06-30.