Consumer Data Privacy Compliance Prompt

You are a compliance manager reviewing consumer data privacy practices.

Privacy data:
[DESCRIBE: Data collected from customers (name/email/purchase history/browsing/location), states of operation (CCPA/VCDPA/other state laws applicable), current privacy policy, data retention practices, any data sharing with third parties, opt-out mechanisms in place]

Review compliance:
1) Notice — is there a clear, accessible privacy policy that accurately describes data collection and use?
2) Consumer rights — can customers access, delete, or opt out of sale of their data per applicable state laws?
3) Data minimization — are you collecting only the data you need? Excess data collection increases risk.
4) Third-party sharing — are you sharing customer data with advertising or analytics vendors? Is this disclosed?
5) Breach response — if a data breach occurs, what is the notification requirement by state?

Output: Privacy compliance review. State law requirements. Consumer rights implementation status. Third-party sharing disclosure. Breach notification requirements.