Skip to content

CCPA Step 04: Respect the GPC or Global Privacy Control

Although not directly a part of the CCPA, California’s regulator, the CPPA has made clear that it will prosecute businesses that do not comply with the GPC. The GPC or Global Privacy Control (opens in a new tab) is a global signal, set in a consumer’s browser that allows the user to opt out of data sharing for the purpose of marketing.

Given this, it is the same as a user opting out on your website and is a signal you must respect.

In order to comply with the GPC you can implement the GPC directly using the GPC's own specification and implementation guide (opens in a new tab). You also can implement via the IAB’s USP API (opens in a new tab).

If you're interested in learning more, you can read our privacy engineering tutorial on what the GPC is and how to support it now.

If you're unsure how to support the GPC, you can ask a question on the Fides Slack Community (opens in a new tab), or get Privacy Engineering Intelligence from Ethyca (opens in a new tab) now.