SightCall supports organizations subject to the California Consumer Privacy Act, CCPA, and the California Privacy Rights Act, CPRA. Our remote visual support platform is designed with privacy and data protection controls that help customers meet their obligations under California privacy law.
CCPA strengthens privacy rights for California residents and establishes requirements for how businesses collect, use, disclose, and safeguard personal information. SightCall provides technical and organizational safeguards to support our customers’ compliance efforts.
What Is the CCPA?
The California Consumer Privacy Act, as amended by the CPRA, grants California residents specific rights regarding their personal information. These rights include:
-
The right to know what personal information is collected
-
The right to request deletion of personal information
-
The right to correct inaccurate information
-
The right to opt out of certain data sharing or selling practices
-
The right to non-discrimination for exercising privacy rights
Organizations that collect or process personal information of California residents must implement appropriate data protection practices and respond to verified consumer requests.
SightCall’s Role Under CCPA
In most cases, organizations using SightCall’s remote visual support platform act as the “business” under CCPA, determining how and why personal information is collected and processed.
SightCall generally acts as a “service provider” or “contractor,” processing personal information on behalf of our customers in accordance with contractual obligations.
As a service provider, SightCall:
-
Processes personal information only as directed by the customer
-
Does not sell customer data
-
Implements safeguards to protect personal information
-
Supports customers in responding to verified consumer rights requests
This role distinction is important for ensuring proper allocation of compliance responsibilities.
How CCPA Applies to Remote Visual Support
When organizations use remote visual support to assist customers, patients, policyholders, or employees, sessions may involve personal information such as:
-
Names and contact information
-
Device identifiers
-
Visual images captured during support
-
Screens displaying account or service data
-
Session metadata and technical logs
SightCall’s platform includes controls to help safeguard this information and support customer privacy obligations under CCPA.
Security and Privacy Controls Supporting CCPA
SightCall implements technical and organizational measures designed to protect personal information processed through the platform.
Encryption
Live video sessions and transmitted data are encrypted in transit. Where data is stored, encryption at rest helps protect sensitive information from unauthorized access.
Access Controls
Role-based access management ensures only authorized users can initiate, join, or review remote visual support sessions. Administrative privileges are restricted and monitored.
Audit Logging and Monitoring
Activity logging and monitoring support accountability and incident response. These controls also assist customers during internal reviews and compliance assessments.
Data Retention Controls
Customers can define retention policies consistent with their internal governance and regulatory requirements. Data is retained and deleted according to contractual terms and configured policies.
Secure Infrastructure
SightCall operates within secure hosting environments that include network protections, monitoring, and layered security controls designed for enterprise use.
Supporting Consumer Rights Requests
Under CCPA, California residents may submit requests to access, delete, or correct their personal information.
Because customers typically act as the “business” under CCPA, they are responsible for verifying and responding to consumer requests. SightCall supports customers by:
-
Providing tools and documentation to help locate relevant data
-
Processing deletion or access requests in accordance with contractual obligations
-
Assisting with reasonable and lawful instructions related to personal information
If SightCall receives a direct request from an end user, we will, where permitted, direct the individual to the appropriate customer acting as the business.
No Sale of Customer Data
SightCall does not sell customer data. Personal information processed through the remote visual support platform is handled strictly in accordance with customer agreements and applicable privacy laws.
CCPA as Part of a Broader Privacy Framework
CCPA compliance is part of SightCall’s broader commitment to data protection. Our security and privacy program also supports organizations operating under:
-
GDPR in the European Union
-
HIPAA in healthcare environments
-
SOC 2 audited security controls
Together, these safeguards support secure and compliant remote visual support across regulated and enterprise industries.
Secure Remote Visual Support with Privacy in Mind
Organizations serving California residents need tools that protect personal information without slowing service operations.
SightCall delivers secure remote visual support with built-in privacy controls that help customers align with CCPA requirements while maintaining operational efficiency and customer trust.