While not final, a draft from California’s Privacy Protection Agency (CPPA) indicates what CPRA businesses should prepare for. Rules include a requirement to honor global opt-out requests,  clarification of language when choices are given, consumer notification of third-party collection and information handling, consumer rights to limit use of sensitive information, and having hyperlinks guide consumers directly to applicable areas of privacy policies for transparency and ease-of-use. 

With a $5 million grant in hand from the Craig Newmark (Craigslist founder) Philanthropies, Consumer Reports plans to give consumers tools they need to gird against cyber threats – and to advocate for the same from business and government. This is part of a much larger initiative by the charity to build civic infrastructure and policy frameworks.