A recent piece from sister publication Event Marketer looks at four additional insights to consider gleaned from a conversation with a privacy manager from Microsoft. With the legislation’s reach extending far beyond California, it’s critical for marketers to determine what compliance looks like for organizations affected. The act’s purpose is to secure privacy rights for California residents involving data collection and sharing personal information. But that can include those businesses that host California residents at an event (even out-of-state) or on its website.

Read more in Event Marketer about which companies are subject to the CCPA, in terms of revenue, size and function; which other states might follow suit; what could constitute a “sale” of personal data; and how third parties might come into play.

Other articles you might enjoy:

• CCPA Update: It’s the Final Countdown
• GDPR: Three Tips for Compliance
• CCPA: Consider It a Blessing, Not a Burden

The post Insights for Marketers on CCPA Compliance appeared first on Chief Marketer.

Advertisers who use the social media platform’s Tailored Audiences and Partner Audiences systems inadvertently may have been able to access users’ email addresses or phone numbers that were provided for security or two-factor authentication purposes, Twitter said in a statement.

No personal data was shared externally with partners or other third parties, said Twitter, adding that they cannot say with certainty how many people were impacted.

While the breach was only publicly announced this week, Twitter said “the issue that allowed this to occur” had been addressed, and this information is no longer being used for advertising.

Tailored Audiences allows advertisers to target ads to customers based on the advertiser’s own marketing lists, while Partner Audiences allows advertisers to use the same Tailored Audiences features to target ads to audiences provided by third-party partners.

“When an advertiser uploaded their marketing list, we may have matched people on Twitter to their list based on the email or phone number the Twitter account holder provided for safety and security purposes,” said the statement. “This was an error and we apologize.”

You May Also Enjoy:

• GDPR: 3 Tips for Compliance
• CCPA is Coming: Are You Ready?
• GDPR and Email Overload Leade to Rise in LinkedIn Marketing

Depending on where Twitter users are globally, they may very well have legal recourse, notes Forbes. The EU’s Global Data Protection Regulation (GDPR), for example, has severe penalties for not only unauthorized use of data, but for not identifying authorities or data owners of breaches.

Separately, on Monday, CNBC reported that Ireland’s Data Protection Commission (DPC) had completed investigations into Facebook’s WhatsApp and Twitter over possible EU data privacy regulations. Companies can reportedly be fined up to four percent of their global annual revenues for violations of GDPR.

Because many big tech companies—such as Twitter, Facebook, Apple and Google—have their EU headquarters in Ireland, the Irish DPC supervises these companies under GDPR. It has opened more than a dozen investigations into such firms.

The post Twitter Reveals User Security Data Was Accessible by Advertisers appeared first on Chief Marketer.