RN Digital Operations
Github
Twitter
Community
  1. Compliance
  • Overview
  • Compliance
    • GDPR
    • CPRA/CCPA
  • Products
    • LicenseForge
Github
Twitter
Community
  1. Compliance

CPRA/CCPA

Privacy & Data Protection Compliance#

RN Digital Operations takes privacy, data protection, and lawful data handling seriously. We explicitly ensure compliance with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA) for users located in California.
Compliance is not treated as a checkbox, but as a baseline requirement for responsible digital operations.

CPRA/CCPA Compliance Commitment#

RN Digital Operations complies with CPRA/CCPA principles, including but not limited to:
Transparency and disclosure of data collection practices
Right to access, delete, and correct personal information
Right to opt-out of the sale or sharing of personal information
Data minimization and purpose limitation
Reasonable security measures to protect personal data
CPRA/CCPA compliance is enforced by design and by default across all public-facing systems.

Data Collection & Processing Principles#

We apply strict limitations to data collection:
Only data that is necessary for functionality, security, or communication is processed
No data is collected “just in case”
No resale or secondary use of personal information
Where personal data is processed, it is done under a clear and lawful basis, such as:
Explicit user consent
Legitimate operational necessity
Legal or compliance obligations

Consent & Tracking#

RN Digital Operations uses a custom-built, privacy-first cookie banner.
This system has been validated to ensure that:
Cookies are blocked by default
No tracking occurs without explicit user consent
Cookies not listed are automatically prevented from loading
Third-party services remain inactive until consent is granted
This behavior meets and, in some cases, exceeds CPRA/CCPA consent requirements.

California Consumer Rights#

For California residents, CPRA/CCPA rights are fully respected, including:
Right to know what personal information is collected, used, shared, or sold
Right to access and obtain a copy of personal information
Right to deletion of personal information
Right to opt-out of the sale or sharing of personal information
Right to non-discrimination for exercising privacy rights
Requests related to these rights are handled carefully, transparently, and without unnecessary delay.

Data Storage & Transfers#

Data transfers are handled using industry-standard safeguards
Access is strictly limited to authorized systems and internal operations
Where cross-service data processing occurs, it is done in a manner consistent with CPRA/CCPA best practices.

Third-Party Services#

RN Digital Operations:
Minimizes reliance on third-party services
Uses third-party providers only when operationally necessary
Selects providers with strong security and privacy practices
Third-party tools never receive unnecessary personal data and are not permitted to use data for their own purposes.

Privacy-Respecting by Design#

Privacy protections are engineered into systems from the start.
CPRA/CCPA compliance is actively maintained
Legal compliance is treated as a minimum standard, not a limitation
California residents’ privacy remains a core operational responsibility, and user trust is valued above all.

Ongoing Compliance Monitoring#

We continuously monitor:
CPRA/CCPA requirements
Privacy regulations in the United States
Technical enforcement mechanisms
As systems evolve, compliance is reassessed to ensure continued alignment with applicable laws and best practices.
Modified at 2026-01-17 20:41:45
Previous
GDPR
Next
LicenseForge
Built with