Skip navigation

Movable Ink's Commitment to CCPA

If you’re looking for information on CCPA and what Movable Ink has done to comply, you’ve come to the right place. The following CCPA Q&A will help you do just that.

What is the CCPA?

The California Consumer Privacy Act (CCPA) gives consumers residing in California more control over the personal information that businesses collect about them and grants them GDPR-like rights of deletion, access, portability, as well as a right to opt-out of the sale of their personal information. The CCPA took effect on January 1, 2020, with enforcement beginning July 1, 2020.

To Whom Does the CCPA Apply?

The CCPA applies to for-profit businesses that do business in California and meet any of the following:

  • Have a gross annual revenue of over $25 million;

  • Buys, “sells” or “shares” the personal information of 100,000 California residents or households; or

  • Derive 50% or more of their annual revenue from selling California residents’ personal information.

Is Movable Ink Compliant?

Yes. Movable Ink’s dedicated Information Security & Compliance team maintains a comprehensive privacy and security program which is based on the principles of transparency, fairness, and accountability. Some examples of data protection measures that Movable Ink has implemented include:

  • Annual internal Security Risk Assessment (SRA) with remediation;

  • Annual internal Compliance Control Assessment with remediation;

  • Annual third-party penetration testing by a qualified supplier with remediation;

  • TLS 1.2 or SNI fully supported for data encryption in transit;

  • AES-256 fully supported for data encryption at rest;

  • Customer data is not stored in non-production environments (e.g., Movable Ink’s staging


  • Regularly scheduled Qualys network and application vulnerability scans with remediation.

Movable Ink is a Service Provider with respect to its clients doing business in California under the CCPA and processes personal information in order to meet the terms of its contracts with those clients. Movable Ink does not sell personal information. Movable Ink’s general privacy statement on the CCPA is located at Movable Ink also has processes in place to ensure timely processing of consumer requests submitted by our clients who are subject to CCPA. While our existing privacy practices already satisfy the core requirements of the CCPA, we are actively monitoring the evolving CCPA regulations in order to address any additional compliance requirements that may be promulgated.

Get a Demo

Activate your data into personalized content in any customer engagement. Get a demo to see why the world’s most innovative brands rely on Movable Ink to drive customer engagement and accelerate their marketing performance.

Get a Demo