DROPShield
California DROP / Delete Act · Effective Aug 1, 2026

Be DROP-ready before August 1.

A compliance operations layer for California data brokers handling DROP deletion requests, suppression lists, service-provider routing, status reporting, and audit evidence.

Run DROP Readiness Check View Compliance Workflow
Aug 1, 2026
DROP enforcement begins
Every 45 days
Mandated re-check cycle
$200 / day
Per unresolved request
The compliance problem

DROP is not a one-time project. It's a recurring obligation.

The Delete Request and Opt-out Platform forces every registered California data broker into a perpetual deletion cycle — with serious financial consequences for falling behind.

August 1, 2026 deadline

Registered California data brokers must begin honoring DROP deletion requests on the first business day of August 2026.

45-day deletion cycle

Every 45 days, brokers must re-check the DROP list and delete newly matching consumer data — indefinitely.

Audit evidence required

The CPPA expects documented proof: who you matched, what you suppressed, when you completed each cycle.

Penalties compound fast

$200 per unresolved deletion request, per day. A backlog of 50 requests over a month is six figures of exposure.

How DROPShield works

Five steps from raw DROP list to audit-ready evidence.

A purpose-built workflow that operationalizes every CPPA requirement, without forcing your engineering team to build it from scratch.

1STEP 1

Import the DROP list

Pull the CPPA DROP deletion list via secure upload or API on every 45-day cycle.

2STEP 2

Match identifiers

Run hashed identifier matching against your internal systems, CRMs, and warehouses.

3STEP 3

Generate deletion tasks

Auto-create deletion and suppression tasks with owners, SLAs, and approval gates.

4STEP 4

Route to vendors

Dispatch deletion instructions to downstream service providers and track acknowledgments.

5STEP 5

Export audit evidence

Produce regulator-ready evidence packs with timestamps, hashes, and chain of custody.

Platform

Everything required to operate a DROP program.

From intake to evidence export — every capability your privacy, legal, and engineering teams need in one system of record.

Deletion request tracker

A single queue for every DROP request, with status, owner, and SLA countdown.

Suppression list manager

Persistent suppression of opted-out identifiers across re-ingestion and new datasets.

Vendor deletion routing

Pre-built connectors and email workflows for service providers and third parties.

45-day compliance calendar

Automated cycle scheduling so you never miss a re-check window.

Status reporting dashboard

Real-time visibility into open, in-progress, and completed requests.

Audit log exports

Immutable logs exportable as PDF or CSV for CPPA inquiries and internal audit.

Penalty exposure estimator

Quantify open-request risk at $200/request/day in real time.

Readiness checklist

Step-by-step preparation tailored to your stack, vendors, and team size.

Penalty exposure estimator

How much DROP exposure is on your books today?

Estimate your statutory penalty exposure at the California DROP rate of $200 per request, per day. We'll email a private summary with recommended next steps — no sales pitch.

  • Quantifies real-time exposure across open requests
  • Benchmarks against typical broker backlogs
  • Includes a 30-day remediation roadmap
Estimate your exposure
Estimated exposure
$140,000
Calculated at $200 / request / day, per CA Civil Code §1798.99.85.

We'll never share your email. Estimate only — not legal advice.

Built for California data brokers without a giant privacy engineering team.

If you're a 10–200 person broker with a registered status and a small compliance team, DROPShield gives you the operational backbone you'd otherwise need to build from scratch — without hiring a six-person privacy engineering org.

Pricing

Predictable pricing for serious compliance programs.

Annual contracts available. All plans include unlimited DROP cycles, secure data handling, and US-based support.

Starter

DROP readiness + tracker

$499/mo
Start readiness
  • DROP list intake (manual & API)
  • Deletion request tracker
  • 45-day cycle scheduling
  • Basic status dashboard
  • Up to 2 users
Most popular

Compliance

Suppression + vendor routing + audit exports

$1,499/mo
Talk to sales
  • Everything in Starter
  • Persistent suppression list manager
  • Vendor deletion routing & acknowledgments
  • Audit log exports (PDF / CSV)
  • Penalty exposure dashboard
  • Up to 10 users

Enterprise

Custom workflows + API integration

Custom
Contact us
  • Everything in Compliance
  • Direct integrations with warehouses & CDPs
  • SAML SSO, SCIM, custom roles
  • Dedicated compliance engineer
  • Custom evidence packs & DPA support

Know your DROP exposure before August 1.

Run a free readiness check today. 15 minutes of input, a clear picture of where you stand before the deadline.

Run DROP Readiness Check Talk to compliance