NOTE: article touch requires product_fit in (mnemopay, gridstamp, ai-audit) per house rules — consulting is out of scope. rerouting to article with reduced confidence. this is a regulatory signal lead, not a person-to-person outbound. recommend Jerry decide whether to publish a BizSuite data-removal content piece on this angle or treat as background research only. no email contact available; no person-to-DM identified.
The DROP portal's August 1 deadline is the compliance moment for data brokers — here's what it actually requires
California's DELETE Request Opt-Out Platform (DROP) goes live August 1, 2026. a single deletion request reaches all 545+ registered California data brokers simultaneously, with a 90-day enforceable compliance window backed by SB 362 (the Delete Act).
before DROP, deletion requests required individual submissions to each broker — a process most brokers made as frictionless as they wanted it to be, which was usually not very. the enforcement mechanism was weak enough that ignoring requests was a rational business decision.
after August 1, that calculus changes. DROP submissions create a timestamped compliance record. 90 days later, undeletable data is documented non-compliance — not a dissatisfied consumer with no recourse.
the 545-broker number is important context: SB 362 required brokers to register with the CPPA as a condition of California operations. DROP is built on the registration list. every broker that registered is now reachable from a single submission and on the hook for the timeline.
what brokers actually need to do before August 1
the DELETE Act's deletion requirement isn't a one-time event. data brokers continuously acquire new data from public records, purchase transactions, and third-party data sources. data deleted in September 2026 can reappear by early 2027 as brokers refresh from new sources.
DROP handles the initial deletion request. it doesn't handle the re-accumulation problem. the gap between "submitted through DROP" and "actually cleaned for the next acquisition cycle" is where compliance failures compound.
for individuals and businesses with employees in high-visibility roles — executives, public-facing staff, anyone targeted by social engineering — the August 1 window is the moment to submit DROP requests AND set up ongoing monitoring for re-appearing data.
BizSuite's Data Removal service covers 48 brokers across 5 tiers, with California Delete Act (SB 362) built-in and continuous monitoring for re-appearing data. $497 + $49/month. DROP handles the registered list; ongoing monitoring handles the re-accumulation and the brokers that fall outside the registration.
Top comments (0)