Glossary of Compliance

Compliance Glossary

Our list of curated compliance glossary offers everything you to know about compliance in one place.

Glossary » CCPA » CCPA Privacy Notice

CCPA Privacy Notice

CCPA (California Consumer Privacy Act) Privacy Notice is a ‘notice at collection’ provided to customers about the types of Personal Information (PI) collected by the business along with the reason for collecting it.

The CCPA privacy notice serves as the primary mechanism through which businesses communicate their data collection practices. It empowers consumers to make informed decisions about their personal data and exercise their rights under the CCPA.

To make it more transparent, businesses should include information on the time period during which the PI was collected.

In the notice, businesses must have a section that informs customers belonging to the state of California of their rights.

An example of the personal information categories in a CCPA Privacy Notice:

Category	Collected	Disclosed	Sold/Shared	Sources of Personal Information
A. Unique Identifiers Examples: Full name, home address, phone number, device IDs, IP address, national ID number.	Yes	Yes	No	Data Brokers, Public Records
B. Financial and Account Information Examples: Account numbers, payment card details, transaction history, credit scores	Yes	Yes	No	Financial Institutions, Service Providers
C. Demographic Data Examples: Age range, gender, marital status, education level, household income.	Yes	No	No	Survey Responses, Service Providers
D. Transactional Data Examples: Purchase records, service subscriptions, product preferences, spending habits	Yes	Yes	No	E-commerce Platforms, Retailers
E. Health and Wellness Information Examples: Medical history, exercise routines, dietary preferences, health monitoring data	No	N/A	N/A	N/A
F. Digital Activity Information Examples: Online activity logs, cookies, interaction data with digital content, login history	Yes	Yes	No	Website Analytics, App Usage Data
G. Location Data Examples: Real-time location, historical location data, travel patterns	Yes	Yes	No	Mobile Apps, GPS Services

Additional reading

Blogs Cybersecurity

5 Foundational Cyber Essentials Controls for a Strong Security Posture

Your software is like a set of instructions for your device, consisting of thousands of lines of code. Sometimes, there are mistakes or weaknesses in these lines of code. Bad actors use these weaknesses to hack into your systems, similar to a burglar finding an open window. Is there a way to Without cybersecurity, it’s…

Blogs GRC

GRC Certification – How to choose from top 10 GRC Certifications ?

A career in Governance, Risk, and Compliance (GRC) can be highly rewarding. This is a dynamic field which is financially lucrative with diverse opportunities for growth and an ability to impact and safeguard an organization’s assets and business reputation. If you are intrigued by a career in GRC, graduate degrees in IT, computer science, and…

Blogs HIPAA

HIPAA Violation Examples: Common Breaches, Real Case Studies & How to Avoid Them

HIPAA violations continue to surge across the healthcare ecosystem, and the data tells a clear, yet troubling story. According to HIPAA Journal, 508 healthcare data breaches were reported as of August 2025, with 58 breaches impacting 3,789,869 individuals happening in August alone. A huge chunk of these issues came down to compromised user or administrative accounts,…

Sprinto: Your growth superpower

Use Sprinto to centralize security compliance management – so nothing
gets in the way of your moving up and winning big.

Contact sales