A new study finds that nearly half of California’s registered data brokers ignore requests to delete personal information, underscoring the limits of privacy laws like the CCPA. Even when brokers comply, data can be copied, resold, and repackaged across hundreds of companies, making it nearly impossible for consumers to know who holds their information.

Experts suggest that instead of relying on deletion requests, people should take proactive steps to limit exposure by sharing the minimum amount of data, using burner emails, and avoiding storing sensitive information with online retailers.

For organizations, the advice is clear — map your data, tighten supply chain oversight, and treat privacy governance as a permanent responsibility rather than a one-time fix.

Via Dark Reading