California's DROP Platform Launches: What Enterprise B2B SaaS Companies Need to Know About Data Deletion Compliance
Blog post from SSOJet
California's Delete Act (SB 362) has introduced the Delete Request and Opt-out Platform (DROP), a pioneering initiative that allows California residents to delete their personal data from over 545 registered data brokers with a single click, significantly impacting consumer privacy and data management practices. This centralized platform, effective from January 1, 2026, mandates data brokers to comply within a specific timeframe, imposing fines for non-compliance, and is expected to handle millions of deletion requests annually. While the act primarily targets data brokers, it also raises compliance challenges for B2B SaaS companies, urging them to enhance their identity infrastructure to support automated user lifecycle management through SCIM provisioning, thereby ensuring systematic and compliant data deletion. As regulatory frameworks increasingly demand automated and auditable processes, SaaS companies face a strategic decision between building or buying the necessary identity infrastructure to remain competitive and compliant, with solutions like SSOJet offering turnkey support for enterprise-grade authentication without the extensive resources required for in-house development.
| Trend | Post Mentions | Total Month Mentions | Posts | Companies | MoM |
|---|---|---|---|---|---|
| Platform Engineering | 10 | 296 | 92 | 48 | -28% |
| Real-time | 1 | 4,546 | 943 | 215 | -38% |