If you are a business on the Internet, I’m pretty sure you’d probably know about Google Analytics.
Google Analytics is a web analytics tool that is used by millions of websites. It helps you analyze your website traffic and also track your website’s performance.
Although Google Analytics helps you understand the behavior of your website visitors, it collects their personal data. And if it doesn’t meet CCPA compliance, then you can get into trouble with penalties.
If you are an online business (doing business globally) and operate from outside California, you will still most likely serve California customers and thus will be impacted by the law.
So in this article, I’ll show you how to quickly make your Google Analytics comply with CCPA.
MonsterInsights is the best WordPress Analytics Plugin, Get it now!
Legal Disclaimer: Although you might not use your customers data for unethical reasons, you still might want to check with your legal team or an Internet Law Attorney to see if you are in compliance with all the applicable laws for your jurisdictions. And just to remind you, there’s no single plugin that can offer 100% compliance. also nothing on this site should be considered legal advice.
What is the CCPA?
The California Consumer Privacy Act (CCPA) is a data protection law that went into effect on January 1, 2020 and has been enforceable since July 1, 2020.
The CCPA provides the Customers of California the right to know what personal information is collected from them, how it is used and how it is shared.
Here are some of the rights the residents of California have under CCPA:
- Right to be Informed: The users have the right to know how a website collects, sells and discloses their personal data.
- Right to have Data Deleted: They have the right to get their personal data erased from a website.
- Right to see What Data: They have the right to see what data has been collected in the past 12 months.
- Right to equal Services and price: Websites are supposed to provide the same service and price as other consumers without any discrimination.
- Right to Opt-out: The consumers have the right to Opt-out anytime of the website that sells, rents or share their personal Information to the third party sites.
So, now let’s see Who needs to have the CCPA compliance.
Who Needs CCPA Compliance?
CCPA doesn’t apply to everyone but if you are a business that has the following conditions, then you’ll need to comply with the law.
- Your business generates $25 million or higher in annual revenue
- If more than 50% of your annual revenue is from selling your customers personal Information
- You buy or sell personal Information of more than 50,000 consumers, devices or households
So, if your business has those conditions and you still don’t comply with the CCPA, you’ll be found to be intentionally violating the law and will face penalties up to $7,500 per violation per Individual. If a user files a lawsuit against you, then you can face penalties between $100 and $750 per violation per Individual or actual damages, whichever is greater.
Does Google Analytics Comply With CCPA?
Google Analytics is a very powerful analytics tool that helps in analyzing your traffic and track your website’s performance. Basically, it assigns your visitors a User ID and records their personal Information like IP address, gender, age, device and other Personally Identifiable Information.
Hence, it does come under the CCPA’s explanation of consumer’s personal Information.
So, now I’ll show you how you can make Google Analytics comply with the requirements of CCPA.
Steps To Make Your Google Analytics CCPA Compliant?
Step 1 – Install MonsterInsights and its EU Compliance Addon
Firstly you’ll need to install MonsterInsights and the EU compliance addon.
The EU Compliance addon lets you automate different processes to make your Google Analytics CCPA compliant. For example, It helps you disable personal data tracking in Google Analytics with the click of a button.
Here’s what the EU Compliance addon lets you do:
- Anonymize IP addresses for Google Analytics hits
- Disable Demographics and Interest Reports for Remarketing and Advertising
- Disable User Id tracking
- Disable Author Tracking
- Enable ga() compatibility mode
- Allow AMP addon users to agree with the Google AMP consent box before tracking their data
- Integrate with the CookieBot or Cookie Notice Plugins
To install and activate the addon, go to Insights >> Addons >> EU Compliance.
After you’ve activated the addon, go to Insights >> Settings >> Engagement and down to EU Compliance and there you can change the settings and disable different tracking features in Google Analytics to comply with CCPA.
Step 2 – Create an Opt-out Consent Box
The next thing you’re supposed to do is to create an Opt-out consent box because as per CCPA the users have the right to Opt-out from websites sharing their personal data with third parties.
The simplest way to create an Opt-out consent box is to use free WordPress plugins like CookieBot or Cookie Notice. These plugins offer a built-in option to set up an opt-out consent box and can be easily integrated with MonsterInsights as well.
CookieBot scans your website and creates a cookie declaration link that can be placed anywhere on your website and it also creates a Do Not Sell My Personal Information document that you can link so that you can comply with the CCPA .
You need to clearly describe that your website uses Google Analytics, and also describe what personal information is collected about the visitors. You have to clearly explain the purpose of the data you collect, how you use it and also if it’s shared with the third parties.
Few FAQs about CCPA and Google Analytics
1. Are Cookies Personal Information Under CCPA?
Any Cookie that tracks personally identifiable information such as IP address, age, gender etc are subject to come under CCPA. So make sure to clearly explain the purpose of cookies to your users. Plugins like CookieBot or Cookie Notice can help you organize them and also add opt-out consent box to your site.
2. Does Google Analytics Collect Personal Information?
Google Analytics assigns User IDs and cookies to track the behavior of the users when they land on the website. And it also collects personal information under CCPA. But with the help of MonsterInsights EU Compliance addon, you can make sure that your Google Analytics complies with the new law.
3. What Should Corporations Do If They Use Google analytics?
The Corporations who use Google Analytics should make sure that their Analytics complies with the new CCPA law. I’ve mentioned some steps in this post so that you comply with CCPA and avoid risks of penalties.
The CCPA law has already been enforced since July 1, 2020 and is applicable to businesses providing web services to the citizens of California.
So if your business uses Google Analytics, just make sure to use the MonsterInsights EU Compliance addon and disable tracking with a few clicks of a button so that you can comply with the new law.
I hope this article taught you how to make your Google Analytics CCPA compliant. Share this post if you think it might help someone.