California Consumer Privacy Act

Zeeto and Data Privacy

Learn more about our privacy and compliance features

Note: This guide is available as a resource, but should not be construed or relied upon as legal advice. Per our Terms of Service, Zeeto does not provide advice or recommendations regarding laws applicable to your site or business. Please consult your company's legal department for advice concerning CCPA and other regional specific data privacy laws.

Supporting California Consumer Privacy Rights

Overview of CCPA

On January 1, 2020, the California Consumer Privacy Act (“CCPA”) went into effect. The CCPA is a new data privacy law that requires businesses to provide certain notices and establishes various rights for California consumers. 

The word “consumers” under the CCPA is actually a bit of a misnomer. Understood colloquially and under many other laws where that word is used, a “consumer” is typically a purchaser/user of goods and services. That’s not at all the case under the CCPA. There, the word “consumer” actually means any resident of California while they are located in California or if they temporarily leave California (e.g., vacation, short-term job transfer, students going to school out of state, etc.).

Under the CCPA, those consumers now have the right to:
  • Disclosure of Collection/Use/Sharing – the right to request that a business disclose the categories and specific elements of personal information collected from the consumer including the source of the information and the business’ use of it; and whether a consumer’s personal information was disclosed or sold to third parties, the categories so disclosed or sold, as well as the categories of third parties who received or purchased it.
  • Access – the right for a consumer to receive a copy of the categories and specific elements of personal information collected about the consumer in the preceding 12 months.
  • Delete – the right, under certain circumstances, for a consumer to request that a business delete the personal information it collected about the consumer.
  • Opt-Out of Sale – the right to request that a business not sell a consumer’s personal information.

A consumer’s ability to exercise those rights is subject to some identity verification requirements.

How does the CCPA apply to Zeeto?

Assuming the CCPA does apply, a business can play one or more of several different context specific roles under the CCPA. For Zeeto, in the context of our publisher and advertiser relationships, we are considered a “service provider.” Simply put, a service provider under the CCPA is a third party who processes personal information on behalf of a business for a specific business purpose as defined by a written contract. The contract between the service provider and business also needs to have certain special terms protecting the personal information disclosed to it.

What does this mean for you?

Meeting the latest privacy requirements is a shared duty between brands and technology providers. To make it easier, as part of our overall CCPA compliance program, we have set out the roles for each party and have shown where we may need to help or partner with you either through tools, processes, or documentation.

Our role as a service provider

When Zeeto provides software and services to a business, we’re acting as a service provider and process the personal information we receive for the limited purpose of performing our contractual obligations and providing the software or service. This means that we process the personal information disclosed to us only in accordance with the businesses’ permission and instructions under the agreement between Zeeto and the business.

Your role as a business

As a business governed by the CCPA, you ultimately determine the personal information we process and store on your behalf depending on the products and solutions you use. You must decide when and how to collect and disclose personal information of California residents based on your own compliance practices and procedures and legal analysis and how to choose to satisfy your notice and other various obligations under the CCPA.

Learn more about the CCPA

The information provided in this guide has been curated from the California Consumer Privacy Act (CCPA) Fact Sheet provided by the state of California’s CCPA Website. Please visit the official State of California - Department of Justice - Office of the Attorney General website for more details.

Zeeto's Commitment

We have been working hard to fine-tune our operations and platform to ensure compliance with the CCPA and continuing our commitment to empower our customers and their visitors to exercise their privacy rights.

Zeeto is built with privacy in mind

Our products can help you build campaigns, manage lead buying, and gain deep business intelligence in a privacy-conscious manner. We invest heavily in our technology to help support a healthy, sustainable ecosystem for both our publishers and advertisers and continuously incorporate privacy features into our product that meet and exceed current regulations.

Zeeto’s robust security policies and compliance features:
  • Access Control
  • Auditing and Logging
  • Authentication
  • Authorization and Access
  • Customer Security Compliance
  • Database Security
  • DMZ Security
  • Employee Termination
  • Encryption
  • Information Security Overview
  • Network Equipment
  • Network Security
  • Password
  • Patch Management
  • Remote Access
  • Roles and Responsibility
  • Security Management
  • Systems Development Policy
  • Systems Security
  • Systems Security Controls (2)
  • Vulnerability Management
  • Wireless Security

How we help our customers comply with the CCPA

At Zeeto, we are committed to assisting our publishers and advertisers in complying with new privacy laws when using our platform. In general practice, we highly recommend all of our customers consult their legal advisors to determine the applicability of data privacy laws and adhere to those laws such as the CCPA and other regional-specific privacy requirements as applicable, especially when using the Zeeto platform.

For starters, as a service provider we have reviewed and continue to evaluate the following:
  • How we collect, store, use and display personal information on behalf of our customers.
  • Our Terms of Service, Privacy Policy, and other service provider terms, policies, and notices to ensure compliance with the CCPA.
  • Our products and services to ensure that they enable our customers to comply with their obligations under the CCPA.
  • Our contracts and relationships with partners and vendors to ensure compliance with the CCPA.
Going the extra mile, we provide:
  • Specialized training for company employees with access to personal information.
  • Zeeto platform guidelines and recommended best practices for our customers.