GPC — Third-Party Requests Must Be Blocked
Audited by Privisy — The Privisy scanner actively tests for compliance with this requirement. Findings linked to this citation appear in your scan report.
What it requires
After receiving a GPC signal, a business must prevent third-party requests that facilitate cross-context behavioral advertising or the sale of personal information. Network-level blocking is the expected implementation.
Legal text (excerpt)
Upon receipt of a valid opt-out preference signal, a business shall not: transmit personal information to any third party for the purposes of cross-context behavioral advertising or the sale of personal information.
Primary source
📄California Privacy Protection Agency (CPPA) — § 7025(c)(4): GPC — Third-Party Requests Must Be Blocked ↗Privisy checks
The following Privisy scanner checks are grounded in this citation:
- ⚡GPC — Marketing Trackers Blocked
Legal notice: This page is for informational purposes only and does not constitute legal advice. The legal text excerpt is reproduced from official public sources and is current as of the stated effective date. Laws change — verify against the authoritative source and consult a licensed attorney for compliance guidance.