CCPA-1798.135-20
Risk Management
1798.135 — Methods of Limiting Sale, Sharing, and Use of Personal Information and Use of Sensitive Personal Information
Limited Liability for Third-Party Violations
Description
A business that communicates opt-out requests to third parties shall not be liable if the receiving person violates restrictions, provided the business lacks actual knowledge or reason to believe the...
Full Analysis & Evidence Requirements
Sign in to view the full obligation text, AI-generated applicability analysis, evidence checklists, and compliance mapping.
Sign In to ViewRelated Obligations
CCPA-1798.135-01
Requirement
Provide 'Do Not Sell or Share' Link on Homepage
CCPA-1798.135-02
Requirement
Provide 'Limit Sensitive Information Use' Link on Homepage
CCPA-1798.135-03
Requirement
Option to Provide Single Combined Link
CCPA-1798.135-04
Transparency
Present Financial Incentive Terms When Charging for Opt-Out
CCPA-1798.135-05
Requirement
Honor Opt-Out Preference Signals
CCPA-1798.135-06
Requirement
Provide Easy Consent Revocation for Opt-Out Override
CCPA-1798.135-07
Requirement
Ensure Non-Degraded User Experience for Override Link
CCPA-1798.135-08
Conformity
Comply with Technical Specifications for Consent Page
CCPA-1798.135-09
Prohibition
No Account Creation Requirement for Opt-Out
CCPA-1798.135-10
Transparency
Include Consumer Rights Description in Privacy Policy
Map this obligation to your AI systems
ReguLume automatically maps regulatory obligations to your system inventory, identifies compliance gaps, and generates remediation plans.
Get Started