SlideShare a Scribd company logo

State_Comp_Privacy_Law_Chart.pdf

J
JasonBentley30

Privacy laws in the US

Law
1 of 2
Download to read offline
CONSUMER RIGHTS BUSINESS OBLIGATIONS STATE LEGISLATIVE PROCESS STATUTE/BILL (HYPERLINKS) COMMON NAME Right of access Right of rectification Right of deletion Right of restriction Right of portability Right to opt out of sales Right against automated decision making Private right of action Opt-in default (requirement age) Notice/transparency requirement Risk assessments Prohibition on discrimination (exercising rights) Purpose/processing limitation LAWS SIGNED (TO DATE) California CCPA California Consumer Privacy Act (2018; effective Jan. 1, 2020) X X X X L 16 X X Proposition 24 California Privacy Rights Act (2020; fully operative Jan. 1, 2023) X X X S X X X L 16 X X X X Colorado SB 190 Colorado Privacy Act (2021; effective July 1, 2023) X X X P X X X~ S/13 X X X X Connecticut SB 6 Connecticut Data Privacy Act (2022; effective July 1, 2023) X X X P X X X~ S/16 X X X X Virginia SB 1392 Virginia Consumer Data Protection Act (2021; effective Jan. 1, 2023) X X X P X X X~ S/13 X X X X Utah SB 227 Utah Consumer Privacy Act (2022; effective Dec. 31, 2023) X X P X X 13 X X ACTIVE BILLS Michigan HB 5989 Consumer Privacy Act X X X P X X X~ S/18 X X X X SB 1182 Personal Data Privacy Act X X X P X X S/13 X X X X New Jersey A 505 New Jersey Disclosure and Accountability Transparency Act X X X X X IN X X ALL X X X S 332 * X X X X X A 1971 * X X X X X Ohio HB 376 Ohio Personal Privacy Act X X X P X X 13 X X X Pennsylvania HB 1126 X X X L 16 X X HB 2202 Consumer Data Privacy Act X X X P X X X~ 16 X X X HB 2257 Consumer Data Protection Act X X X P X X X~ S/18 X X X X INACTIVE BILLS Alaska HB 159 Consumer Data Privacy Act X X X X X 18 X X X SB 116 Consumer Data Privacy Act X X X X X 18 X X X HB 222 Alaska Consumer Information Protection Act X X X S X X L 16 X X X Arizona HB 2790 X X X X X X X X Florida SB 1864 Florida Privacy Protection Act X X X P X X S/16 X X X HB 9 X X X X X L 18 X X X Georgia SB 394 Georgia Computer Data Privacy Act X X X IN X ALL X X X Hawaii HB 2051 Hawaii Consumer Privacy Act X X X S X X * 16 X * X X SB 2428 Consumer Data Protection Act X X X P X X X~ S/16 X X X X SB 2797 Consumer Data Protection Act X X X P X X X~ S/16 X X X X HB 2341 Consumer Data Protection Act X X X P X X X~ S/16 X X X X Indiana HB 1261 X X X X X 16 X SB 358 X X X P X X X~ S/13 X X X X Iowa HF 2506 X X P X X X~ 13 X X X SF 2208 X X X P X X X~ S/13 X X X X Kentucky SB 15 X X X X L S/18 X X X X HB 586 X X X X 13 X X X Louisiana HB 987 Louisiana Consumer Privacy Act X X X P X X 13 X X X Maine LD 1982 Maine Consumer Privacy Act X X X X L 16 X X X Maryland SB 11 Workgroup substituted for comprehensive bill Massachusetts S 2687 Massachusetts Information Privacy and Security Act X X X S X X L 16 X X X X H 4514 Massachusetts Information Privacy and Security Act X X X S X X L 16 X X X X S 46 * Massachusetts Information Privacy Act X X X X X IN X X ALL X X X H 142 * Massachusetts Information Privacy Act X X X X X IN X X ALL X X X H 136 * X X X X X X X~ X X A X X Minnesota HF 1492 Minnesota Consumer Data Privacy Act X X X P X X X~ S/13 X X X X Mississippi SB 2330 Mississippi Consumer Data Privacy Act X X X L 16 X X Nebraska LB 1188 Uniform Personal Data Protection Act X X * * * X X X X New York A 680 New York Privacy Act X X X X X IN X L ALL X X X X S 6701 New York Privacy Act X X X X X X L S X X X X A 6042 Digital Fairness Act X X X IN X X ALL X A X X S 567 X X X 16 X X A 3709 X X X 16 X X North Carolina S 569 Consumer Privacy Act X X X X X X~ X S X X X X Oklahoma HB 1602 Oklahoma Computer Data Privacy Act X X X IN ALL X X HB 3447 Uniform Personal Data Protection Act X X * * * X X X X HB 2969 Oklahoma Computer Data Privacy Act of 2022 X X X IN ALL X X X Rhode Island H 7917 Rhode Island Information Privacy Act X X X X X IN X ALL X X X Vermont H 160 Only short-form bill available H 570 Only short-form bill available Washington HB 1433 People’s Privacy Act X X X X X IN X ALL X X X SB 5062 Washington Privacy Act X X X P X X X~ S/13 X X X X HB 1850 Washington Foundational Data Privacy Act Commission substituted for comprehensive bill * SB 5813 X X X X L 18 X A X X West Virginia HB 4454 S X 16 X X Wisconsin AB 957 X X X P X X X~ S/13 X X X X SB 957 X X X P X X X~ S/13 X X X X AB 1050 X X X X L 16 X X SB 977 X X X X L 16 X X INTRODUCED IN COMMITTEE IN CROSS CHAMBER IN CROSS COMMITTEE PASSED SIGNED A - risk assesments for limited purposes only IN - opt-in consent requirement L - private right of action limited to certain violations only P - right to opt-out of processing for profiling/targeted advertising purposes S - sensitive data X - right or obligation exists ~ - right to opt out of certain automated decision making * - see notes * Hawaii HB 2051 - Bill requires the Department of Commerce and Consumer Affairs to adopt rules governing opt-out rights for automated decision making and risk assessment obligations. * Nebraska LB 1188 and Oklahoma HB 3447 - Bills are based on the Uniform Law Commission’s model privacy bill, the UPDPA. This model bill does not require consent for processing that “is consistent with the ordinary expectations of data subjects or is likely to benefit data subjects substantially;” consent is required for processing that is an “incompatible data practice,” and certain types of processing are prohibited. * New Jersey S 332 and A 1971 - Bills are limited to commercial Internet websites and online services only. * Washington HB 1850 - Bill contingent upon enactment of the WPA (SB 5062). * Massachusetts S 46, H 142 and H 136 - Bills replaced by the MIPSA (S 2687/H 4514). The most recent version of the IAPP’s US State Privacy Legislation Tracker can be found here. IAPP has previous editions of the Tracker for 2021, 2020, and 2018-2019. US State Privacy Legislation Tracker Comprehensive Consumer Privacy Bills 2022 Last updated: 10/7/2022 ↓ TERMS IN CHART ↓
US State Privacy Legislation Tracker Comprehensive Consumer Privacy Bills 2022 TERMS USED IN CHART The US State Privacy Legislation Tracker chart contains terms regarding the legislative process, consumer rights and business obligations. To better understand these terms and how IAPP is using them in the chart, see below. LEGISLATIVE PROCESS Each state legislature has a unique legislative calendar and different legislative procedures. This set of columns generalizes those different legislative procedures into six categories: Introduced — A bill has been introduced on a legislative chamber floor but has not yet moved into committee. In Committee — A bill is moving through the various committees in its chamber of origin. In Cross Chamber — A bill has passed a vote in its chamber of origin and moved to the opposite chamber of the legislature (e.g., a state house of representatives passed a bill and it moved to the state senate). In Cross Committee — A bill is moving through the various committees in its non-originating chamber. Passed — Both chambers of the legislature have passed the bill. Signed — The governor signed the bill and it is now law. CONSUMER RIGHTS Right of access — The right for a consumer to access from a business/data controller the information or categories of information collected about a consumer, the information or categories of information shared with third parties, or the specific third parties or categories of third parties to which the information was shared; or, some combination of similar information. Right of rectification — The right for a consumer to request that incorrect or outdated personal information be corrected but not deleted. Right of deletion — The right for a consumer to request deletion of personal information about the consumer under certain conditions. Right of restriction — The right for a consumer to restrict a business’s ability to process personal information about the consumer. Right of portability — The right for a consumer to request personal information about the consumer be disclosed in a common file format. Right to opt-out of sales — The right for a consumer to opt out of the sale of personal information about the consumer to third parties. Right against automated decision making — A prohibition against a business making decisions about a consumer based solely on an automated process without human input. Private right of action — The right for a consumer to seek civil damages from a business for violations of a statute. BUSINESS OBLIGATIONS Opt-in default (requirement age) — A restriction placed on a business to treat consumers under a certain age with an opt-in default for the sale of their personal information. Notice/transparency requirement — An obligation placed on a business to provide notice to consumers about certain data practices, privacy operations, and/or privacy programs. Risk assessments — An obligation placed on a business to conduct formal risk assessments of privacy and/or security projects or procedures. Prohibition on discrimination (exercising rights) — A prohibition against a business treating a consumer who exercises a consumer right differently than a consumer who does not exercise a right. Purpose/processing limitation — An EU General Data Protection Regulation–style restrictive structure that prohibits the collection/processing of personal information except for a specific purpose. Last updated: 10/7/2022 ↑ BACK TO CHART ↑

Recommended

Wb 2020-03-25-us-quarterly-privacy-update
Wb 2020-03-25-us-quarterly-privacy-updateWb 2020-03-25-us-quarterly-privacy-update
Wb 2020-03-25-us-quarterly-privacy-update
TrustArc
 
So Many States, So Many Privacy Laws: US State Privacy Law Update
So Many States, So Many Privacy Laws: US State Privacy Law UpdateSo Many States, So Many Privacy Laws: US State Privacy Law Update
So Many States, So Many Privacy Laws: US State Privacy Law Update
TrustArc
 
SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...
SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...
SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...
DaviesParker
 
L3 presentation14
L3 presentation14L3 presentation14
L3 presentation14
SHARP TRADERS & COMMODITIES GROUP
 
Patent Reform 2015 - Andrew Baluch presentation to Rutgers University
Patent Reform 2015 - Andrew Baluch presentation to Rutgers UniversityPatent Reform 2015 - Andrew Baluch presentation to Rutgers University
Patent Reform 2015 - Andrew Baluch presentation to Rutgers University
Dipanjan "DJ" Nag
 
Senator Saslaw's 2015 Richmond Report
Senator Saslaw's 2015 Richmond ReportSenator Saslaw's 2015 Richmond Report
Senator Saslaw's 2015 Richmond Report
grantwherring
 
10 Things You Need To Know About Privacy
10 Things You Need To Know About Privacy10 Things You Need To Know About Privacy
10 Things You Need To Know About Privacy
Now Dentons
 
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
Kenneth Riley
 

Recommended

Wb 2020-03-25-us-quarterly-privacy-update
Wb 2020-03-25-us-quarterly-privacy-updateWb 2020-03-25-us-quarterly-privacy-update
Wb 2020-03-25-us-quarterly-privacy-update
TrustArc
 
So Many States, So Many Privacy Laws: US State Privacy Law Update
So Many States, So Many Privacy Laws: US State Privacy Law UpdateSo Many States, So Many Privacy Laws: US State Privacy Law Update
So Many States, So Many Privacy Laws: US State Privacy Law Update
TrustArc
 
SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...
SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...
SECTOR-SPECIFIC-REGULATIONS-AND-A-FEW-HICCUPS-MORE-U.S.A-AND-ITS-PRIVACY-LAWS...
DaviesParker
 
L3 presentation14
L3 presentation14L3 presentation14
L3 presentation14
SHARP TRADERS & COMMODITIES GROUP
 
Patent Reform 2015 - Andrew Baluch presentation to Rutgers University
Patent Reform 2015 - Andrew Baluch presentation to Rutgers UniversityPatent Reform 2015 - Andrew Baluch presentation to Rutgers University
Patent Reform 2015 - Andrew Baluch presentation to Rutgers University
Dipanjan "DJ" Nag
 
Senator Saslaw's 2015 Richmond Report
Senator Saslaw's 2015 Richmond ReportSenator Saslaw's 2015 Richmond Report
Senator Saslaw's 2015 Richmond Report
grantwherring
 
10 Things You Need To Know About Privacy
10 Things You Need To Know About Privacy10 Things You Need To Know About Privacy
10 Things You Need To Know About Privacy
Now Dentons
 
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
[Title Redacted for Privacy Purposes]: How Internal Audit Can Help Drive Priv...
Kenneth Riley
 
CSI 2008, Legal Developments In Security and Privacy Law
CSI 2008, Legal Developments In Security and Privacy Law CSI 2008, Legal Developments In Security and Privacy Law
CSI 2008, Legal Developments In Security and Privacy Law
padler01
 
Nov web presentation
Nov web presentationNov web presentation
Nov web presentation
Carol Buckmann
 
Senate bill 1733 salient points
Senate bill 1733 salient pointsSenate bill 1733 salient points
Senate bill 1733 salient points
Ernesto Neri
 
1ITC358ICT Management and Information SecurityChapter 12.docx
1ITC358ICT Management and Information SecurityChapter 12.docx1ITC358ICT Management and Information SecurityChapter 12.docx
1ITC358ICT Management and Information SecurityChapter 12.docx
hyacinthshackley2629
 
Post US Election Privacy Updates & Implications
Post US Election Privacy Updates & ImplicationsPost US Election Privacy Updates & Implications
Post US Election Privacy Updates & Implications
TrustArc
 
U.S. Quarterly Privacy Update
U.S. Quarterly Privacy UpdateU.S. Quarterly Privacy Update
U.S. Quarterly Privacy Update
TrustArc
 
LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...
LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...
LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...
Dr. Oliver Massmann
 
U.T. Immigration Law Conference Presentation
U.T. Immigration Law Conference PresentationU.T. Immigration Law Conference Presentation
U.T. Immigration Law Conference Presentation
Arizona Employers for Immigration Reform
 
7 CCPA Amendments Explained [What Marketers Should Know]
7 CCPA Amendments Explained [What Marketers Should Know]7 CCPA Amendments Explained [What Marketers Should Know]
7 CCPA Amendments Explained [What Marketers Should Know]
Data Services, Inc.
 
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
DDMA
 
Privacy and Wearables - Wearables Crash Course Webinar Series
Privacy and Wearables - Wearables Crash Course Webinar SeriesPrivacy and Wearables - Wearables Crash Course Webinar Series
Privacy and Wearables - Wearables Crash Course Webinar Series
Meltem Tarhan
 
Privacy Practice Fundamentals: Understanding Compliance Regimes and Requirements
Privacy Practice Fundamentals: Understanding Compliance Regimes and RequirementsPrivacy Practice Fundamentals: Understanding Compliance Regimes and Requirements
Privacy Practice Fundamentals: Understanding Compliance Regimes and Requirements
Anitafin
 
Capital Thinking Updates ~ September 10, 2012
Capital Thinking Updates ~ September 10, 2012Capital Thinking Updates ~ September 10, 2012
Capital Thinking Updates ~ September 10, 2012
Patton Boggs LLP
 
USA: President Obama Signs Legislation Making Internet Tax Freedom Act Permanent
USA: President Obama Signs Legislation Making Internet Tax Freedom Act PermanentUSA: President Obama Signs Legislation Making Internet Tax Freedom Act Permanent
USA: President Obama Signs Legislation Making Internet Tax Freedom Act Permanent
Alex Baulf
 
C Zick Foley Hoag FEI presentation 111315
C Zick Foley Hoag FEI presentation 111315C Zick Foley Hoag FEI presentation 111315
C Zick Foley Hoag FEI presentation 111315
Colin Zick
 
Consumer Privacy Online | JMC 8416
Consumer Privacy Online | JMC 8416Consumer Privacy Online | JMC 8416
Consumer Privacy Online | JMC 8416
Sam Petto
 
Privacy_Issues_Overview
Privacy_Issues_OverviewPrivacy_Issues_Overview
Privacy_Issues_Overview
Brian Berger
 
Privacy issues overview
Privacy issues overviewPrivacy issues overview
Privacy issues overview
Brian Berger
 
What to expect from the New York Privacy Act
What to expect from the New York Privacy ActWhat to expect from the New York Privacy Act
What to expect from the New York Privacy Act
VISTA InfoSec
 
Lettre de Elisabeth Warren au président Obama
Lettre de Elisabeth Warren au président ObamaLettre de Elisabeth Warren au président Obama
Lettre de Elisabeth Warren au président Obama
Grégoire Normand
 
一比一原版伦敦南岸大学毕业证如何办理
一比一原版伦敦南岸大学毕业证如何办理一比一原版伦敦南岸大学毕业证如何办理
一比一原版伦敦南岸大学毕业证如何办理
Airst S
 
Performance of contract-1 law presentation
Performance of contract-1 law presentationPerformance of contract-1 law presentation
Performance of contract-1 law presentation
Khushdeep Kaur
 

More Related Content

Similar to State_Comp_Privacy_Law_Chart.pdf

Senate bill 1733 salient points
Senate bill 1733 salient pointsSenate bill 1733 salient points
Senate bill 1733 salient points
Ernesto Neri
 
1ITC358ICT Management and Information SecurityChapter 12.docx
1ITC358ICT Management and Information SecurityChapter 12.docx1ITC358ICT Management and Information SecurityChapter 12.docx
1ITC358ICT Management and Information SecurityChapter 12.docx
hyacinthshackley2629
 
Post US Election Privacy Updates & Implications
Post US Election Privacy Updates & ImplicationsPost US Election Privacy Updates & Implications
Post US Election Privacy Updates & Implications
TrustArc
 
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
DDMA
 
Privacy and Wearables - Wearables Crash Course Webinar Series
Privacy and Wearables - Wearables Crash Course Webinar SeriesPrivacy and Wearables - Wearables Crash Course Webinar Series
Privacy and Wearables - Wearables Crash Course Webinar Series
Meltem Tarhan
 
Capital Thinking Updates ~ September 10, 2012
Capital Thinking Updates ~ September 10, 2012Capital Thinking Updates ~ September 10, 2012
Capital Thinking Updates ~ September 10, 2012
Patton Boggs LLP
 
C Zick Foley Hoag FEI presentation 111315
C Zick Foley Hoag FEI presentation 111315C Zick Foley Hoag FEI presentation 111315
C Zick Foley Hoag FEI presentation 111315
Colin Zick
 
Privacy_Issues_Overview
Privacy_Issues_OverviewPrivacy_Issues_Overview
Privacy_Issues_Overview
Brian Berger
 

Similar to State_Comp_Privacy_Law_Chart.pdf (20)

CSI 2008, Legal Developments In Security and Privacy Law
CSI 2008, Legal Developments In Security and Privacy Law CSI 2008, Legal Developments In Security and Privacy Law
CSI 2008, Legal Developments In Security and Privacy Law
 
Nov web presentation
Nov web presentationNov web presentation
Nov web presentation
 
Senate bill 1733 salient points
Senate bill 1733 salient pointsSenate bill 1733 salient points
Senate bill 1733 salient points
 
1ITC358ICT Management and Information SecurityChapter 12.docx
1ITC358ICT Management and Information SecurityChapter 12.docx1ITC358ICT Management and Information SecurityChapter 12.docx
1ITC358ICT Management and Information SecurityChapter 12.docx
 
Post US Election Privacy Updates & Implications
Post US Election Privacy Updates & ImplicationsPost US Election Privacy Updates & Implications
Post US Election Privacy Updates & Implications
 
U.S. Quarterly Privacy Update
U.S. Quarterly Privacy UpdateU.S. Quarterly Privacy Update
U.S. Quarterly Privacy Update
 
LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...
LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...
LAWYER IN VIETNAM DR OLIVER MASSMANN NEW DRAFT DECREE ON PERSONAL DATA PROTEC...
 
U.T. Immigration Law Conference Presentation
U.T. Immigration Law Conference PresentationU.T. Immigration Law Conference Presentation
U.T. Immigration Law Conference Presentation
 
7 CCPA Amendments Explained [What Marketers Should Know]
7 CCPA Amendments Explained [What Marketers Should Know]7 CCPA Amendments Explained [What Marketers Should Know]
7 CCPA Amendments Explained [What Marketers Should Know]
 
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
Presentatie dma boston 2011: Welke impact heeft us privacyregulering op uw bu...
 
Privacy and Wearables - Wearables Crash Course Webinar Series
Privacy and Wearables - Wearables Crash Course Webinar SeriesPrivacy and Wearables - Wearables Crash Course Webinar Series
Privacy and Wearables - Wearables Crash Course Webinar Series
 
Privacy Practice Fundamentals: Understanding Compliance Regimes and Requirements
Privacy Practice Fundamentals: Understanding Compliance Regimes and RequirementsPrivacy Practice Fundamentals: Understanding Compliance Regimes and Requirements
Privacy Practice Fundamentals: Understanding Compliance Regimes and Requirements
 
Capital Thinking Updates ~ September 10, 2012
Capital Thinking Updates ~ September 10, 2012Capital Thinking Updates ~ September 10, 2012
Capital Thinking Updates ~ September 10, 2012
 
USA: President Obama Signs Legislation Making Internet Tax Freedom Act Permanent
USA: President Obama Signs Legislation Making Internet Tax Freedom Act PermanentUSA: President Obama Signs Legislation Making Internet Tax Freedom Act Permanent
USA: President Obama Signs Legislation Making Internet Tax Freedom Act Permanent
 
C Zick Foley Hoag FEI presentation 111315
C Zick Foley Hoag FEI presentation 111315C Zick Foley Hoag FEI presentation 111315
C Zick Foley Hoag FEI presentation 111315
 
Consumer Privacy Online | JMC 8416
Consumer Privacy Online | JMC 8416Consumer Privacy Online | JMC 8416
Consumer Privacy Online | JMC 8416
 
Privacy_Issues_Overview
Privacy_Issues_OverviewPrivacy_Issues_Overview
Privacy_Issues_Overview
 
Privacy issues overview
Privacy issues overviewPrivacy issues overview
Privacy issues overview
 
What to expect from the New York Privacy Act
What to expect from the New York Privacy ActWhat to expect from the New York Privacy Act
What to expect from the New York Privacy Act
 
Lettre de Elisabeth Warren au président Obama
Lettre de Elisabeth Warren au président ObamaLettre de Elisabeth Warren au président Obama
Lettre de Elisabeth Warren au président Obama
 

Recently uploaded

一比一原版伦敦南岸大学毕业证如何办理
一比一原版伦敦南岸大学毕业证如何办理一比一原版伦敦南岸大学毕业证如何办理
一比一原版伦敦南岸大学毕业证如何办理
Airst S
 
6th sem cpc notes for 6th semester students samjhe. Padhlo bhai
6th sem cpc notes for 6th semester students samjhe. Padhlo bhai6th sem cpc notes for 6th semester students samjhe. Padhlo bhai
6th sem cpc notes for 6th semester students samjhe. Padhlo bhai
ShashankKumar441258
 
Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...
Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...
Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...
SUHANI PANDEY
 
一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理
一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理
一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理
Airst S
 
一比一原版赫瑞瓦特大学毕业证如何办理
一比一原版赫瑞瓦特大学毕业证如何办理一比一原版赫瑞瓦特大学毕业证如何办理
一比一原版赫瑞瓦特大学毕业证如何办理
Airst S
 
PowerPoint - Legal Citation Form 1 - Case Law.pptx
PowerPoint - Legal Citation Form 1 - Case Law.pptxPowerPoint - Legal Citation Form 1 - Case Law.pptx
PowerPoint - Legal Citation Form 1 - Case Law.pptx
ca2or2tx
 
一比一原版赫尔大学毕业证如何办理
一比一原版赫尔大学毕业证如何办理一比一原版赫尔大学毕业证如何办理
一比一原版赫尔大学毕业证如何办理
Airst S
 

Recently uploaded (20)

一比一原版伦敦南岸大学毕业证如何办理
一比一原版伦敦南岸大学毕业证如何办理一比一原版伦敦南岸大学毕业证如何办理
一比一原版伦敦南岸大学毕业证如何办理
 
Performance of contract-1 law presentation
Performance of contract-1 law presentationPerformance of contract-1 law presentation
Performance of contract-1 law presentation
 
IBC (Insolvency and Bankruptcy Code 2016)-IOD - PPT.pptx
IBC (Insolvency and Bankruptcy Code 2016)-IOD - PPT.pptxIBC (Insolvency and Bankruptcy Code 2016)-IOD - PPT.pptx
IBC (Insolvency and Bankruptcy Code 2016)-IOD - PPT.pptx
 
6th sem cpc notes for 6th semester students samjhe. Padhlo bhai
6th sem cpc notes for 6th semester students samjhe. Padhlo bhai6th sem cpc notes for 6th semester students samjhe. Padhlo bhai
6th sem cpc notes for 6th semester students samjhe. Padhlo bhai
 
Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...
Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...
Independent Call Girls Pune | 8005736733 Independent Escorts & Dating Escorts...
 
Philippine FIRE CODE REVIEWER for Architecture Board Exam Takers
Philippine FIRE CODE REVIEWER for Architecture Board Exam TakersPhilippine FIRE CODE REVIEWER for Architecture Board Exam Takers
Philippine FIRE CODE REVIEWER for Architecture Board Exam Takers
 
$ Love Spells^ 💎 (310) 882-6330 in Utah, UT | Psychic Reading Best Black Magi...
$ Love Spells^ 💎 (310) 882-6330 in Utah, UT | Psychic Reading Best Black Magi...$ Love Spells^ 💎 (310) 882-6330 in Utah, UT | Psychic Reading Best Black Magi...
$ Love Spells^ 💎 (310) 882-6330 in Utah, UT | Psychic Reading Best Black Magi...
 
Human Rights_FilippoLuciani diritti umani.pptx
Human Rights_FilippoLuciani diritti umani.pptxHuman Rights_FilippoLuciani diritti umani.pptx
Human Rights_FilippoLuciani diritti umani.pptx
 
Analysis of R V Kelkar's Criminal Procedure Code ppt- chapter 1 .pptx
Analysis of R V Kelkar's Criminal Procedure Code ppt- chapter 1 .pptxAnalysis of R V Kelkar's Criminal Procedure Code ppt- chapter 1 .pptx
Analysis of R V Kelkar's Criminal Procedure Code ppt- chapter 1 .pptx
 
一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理
一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理
一比一原版(JCU毕业证书)詹姆斯库克大学毕业证如何办理
 
一比一原版赫瑞瓦特大学毕业证如何办理
一比一原版赫瑞瓦特大学毕业证如何办理一比一原版赫瑞瓦特大学毕业证如何办理
一比一原版赫瑞瓦特大学毕业证如何办理
 
PowerPoint - Legal Citation Form 1 - Case Law.pptx
PowerPoint - Legal Citation Form 1 - Case Law.pptxPowerPoint - Legal Citation Form 1 - Case Law.pptx
PowerPoint - Legal Citation Form 1 - Case Law.pptx
 
Shubh_Burden of proof_Indian Evidence Act.pptx
Shubh_Burden of proof_Indian Evidence Act.pptxShubh_Burden of proof_Indian Evidence Act.pptx
Shubh_Burden of proof_Indian Evidence Act.pptx
 
一比一原版赫尔大学毕业证如何办理
一比一原版赫尔大学毕业证如何办理一比一原版赫尔大学毕业证如何办理
一比一原版赫尔大学毕业证如何办理
 
Relationship Between International Law and Municipal Law MIR.pdf
Relationship Between International Law and Municipal Law MIR.pdfRelationship Between International Law and Municipal Law MIR.pdf
Relationship Between International Law and Municipal Law MIR.pdf
 
Smarp Snapshot 210 -- Google's Social Media Ad Fraud & Disinformation Strategy
Smarp Snapshot 210 -- Google's Social Media Ad Fraud & Disinformation StrategySmarp Snapshot 210 -- Google's Social Media Ad Fraud & Disinformation Strategy
Smarp Snapshot 210 -- Google's Social Media Ad Fraud & Disinformation Strategy
 
PPT- Voluntary Liquidation (Under section 59).pptx
PPT- Voluntary Liquidation (Under section 59).pptxPPT- Voluntary Liquidation (Under section 59).pptx
PPT- Voluntary Liquidation (Under section 59).pptx
 
8. SECURITY GUARD CREED, CODE OF CONDUCT, COPE.pptx
8. SECURITY GUARD CREED, CODE OF CONDUCT, COPE.pptx8. SECURITY GUARD CREED, CODE OF CONDUCT, COPE.pptx
8. SECURITY GUARD CREED, CODE OF CONDUCT, COPE.pptx
 
MOCK GENERAL MEETINGS (SS-2)- PPT- Part 2.pptx
MOCK GENERAL MEETINGS (SS-2)- PPT- Part 2.pptxMOCK GENERAL MEETINGS (SS-2)- PPT- Part 2.pptx
MOCK GENERAL MEETINGS (SS-2)- PPT- Part 2.pptx
 
BPA GROUP 7 - DARIO VS. MISON REPORTING.pdf
BPA GROUP 7 - DARIO VS. MISON REPORTING.pdfBPA GROUP 7 - DARIO VS. MISON REPORTING.pdf
BPA GROUP 7 - DARIO VS. MISON REPORTING.pdf
 

State_Comp_Privacy_Law_Chart.pdf

  • 1. CONSUMER RIGHTS BUSINESS OBLIGATIONS STATE LEGISLATIVE PROCESS STATUTE/BILL (HYPERLINKS) COMMON NAME Right of access Right of rectification Right of deletion Right of restriction Right of portability Right to opt out of sales Right against automated decision making Private right of action Opt-in default (requirement age) Notice/transparency requirement Risk assessments Prohibition on discrimination (exercising rights) Purpose/processing limitation LAWS SIGNED (TO DATE) California CCPA California Consumer Privacy Act (2018; effective Jan. 1, 2020) X X X X L 16 X X Proposition 24 California Privacy Rights Act (2020; fully operative Jan. 1, 2023) X X X S X X X L 16 X X X X Colorado SB 190 Colorado Privacy Act (2021; effective July 1, 2023) X X X P X X X~ S/13 X X X X Connecticut SB 6 Connecticut Data Privacy Act (2022; effective July 1, 2023) X X X P X X X~ S/16 X X X X Virginia SB 1392 Virginia Consumer Data Protection Act (2021; effective Jan. 1, 2023) X X X P X X X~ S/13 X X X X Utah SB 227 Utah Consumer Privacy Act (2022; effective Dec. 31, 2023) X X P X X 13 X X ACTIVE BILLS Michigan HB 5989 Consumer Privacy Act X X X P X X X~ S/18 X X X X SB 1182 Personal Data Privacy Act X X X P X X S/13 X X X X New Jersey A 505 New Jersey Disclosure and Accountability Transparency Act X X X X X IN X X ALL X X X S 332 * X X X X X A 1971 * X X X X X Ohio HB 376 Ohio Personal Privacy Act X X X P X X 13 X X X Pennsylvania HB 1126 X X X L 16 X X HB 2202 Consumer Data Privacy Act X X X P X X X~ 16 X X X HB 2257 Consumer Data Protection Act X X X P X X X~ S/18 X X X X INACTIVE BILLS Alaska HB 159 Consumer Data Privacy Act X X X X X 18 X X X SB 116 Consumer Data Privacy Act X X X X X 18 X X X HB 222 Alaska Consumer Information Protection Act X X X S X X L 16 X X X Arizona HB 2790 X X X X X X X X Florida SB 1864 Florida Privacy Protection Act X X X P X X S/16 X X X HB 9 X X X X X L 18 X X X Georgia SB 394 Georgia Computer Data Privacy Act X X X IN X ALL X X X Hawaii HB 2051 Hawaii Consumer Privacy Act X X X S X X * 16 X * X X SB 2428 Consumer Data Protection Act X X X P X X X~ S/16 X X X X SB 2797 Consumer Data Protection Act X X X P X X X~ S/16 X X X X HB 2341 Consumer Data Protection Act X X X P X X X~ S/16 X X X X Indiana HB 1261 X X X X X 16 X SB 358 X X X P X X X~ S/13 X X X X Iowa HF 2506 X X P X X X~ 13 X X X SF 2208 X X X P X X X~ S/13 X X X X Kentucky SB 15 X X X X L S/18 X X X X HB 586 X X X X 13 X X X Louisiana HB 987 Louisiana Consumer Privacy Act X X X P X X 13 X X X Maine LD 1982 Maine Consumer Privacy Act X X X X L 16 X X X Maryland SB 11 Workgroup substituted for comprehensive bill Massachusetts S 2687 Massachusetts Information Privacy and Security Act X X X S X X L 16 X X X X H 4514 Massachusetts Information Privacy and Security Act X X X S X X L 16 X X X X S 46 * Massachusetts Information Privacy Act X X X X X IN X X ALL X X X H 142 * Massachusetts Information Privacy Act X X X X X IN X X ALL X X X H 136 * X X X X X X X~ X X A X X Minnesota HF 1492 Minnesota Consumer Data Privacy Act X X X P X X X~ S/13 X X X X Mississippi SB 2330 Mississippi Consumer Data Privacy Act X X X L 16 X X Nebraska LB 1188 Uniform Personal Data Protection Act X X * * * X X X X New York A 680 New York Privacy Act X X X X X IN X L ALL X X X X S 6701 New York Privacy Act X X X X X X L S X X X X A 6042 Digital Fairness Act X X X IN X X ALL X A X X S 567 X X X 16 X X A 3709 X X X 16 X X North Carolina S 569 Consumer Privacy Act X X X X X X~ X S X X X X Oklahoma HB 1602 Oklahoma Computer Data Privacy Act X X X IN ALL X X HB 3447 Uniform Personal Data Protection Act X X * * * X X X X HB 2969 Oklahoma Computer Data Privacy Act of 2022 X X X IN ALL X X X Rhode Island H 7917 Rhode Island Information Privacy Act X X X X X IN X ALL X X X Vermont H 160 Only short-form bill available H 570 Only short-form bill available Washington HB 1433 People’s Privacy Act X X X X X IN X ALL X X X SB 5062 Washington Privacy Act X X X P X X X~ S/13 X X X X HB 1850 Washington Foundational Data Privacy Act Commission substituted for comprehensive bill * SB 5813 X X X X L 18 X A X X West Virginia HB 4454 S X 16 X X Wisconsin AB 957 X X X P X X X~ S/13 X X X X SB 957 X X X P X X X~ S/13 X X X X AB 1050 X X X X L 16 X X SB 977 X X X X L 16 X X INTRODUCED IN COMMITTEE IN CROSS CHAMBER IN CROSS COMMITTEE PASSED SIGNED A - risk assesments for limited purposes only IN - opt-in consent requirement L - private right of action limited to certain violations only P - right to opt-out of processing for profiling/targeted advertising purposes S - sensitive data X - right or obligation exists ~ - right to opt out of certain automated decision making * - see notes * Hawaii HB 2051 - Bill requires the Department of Commerce and Consumer Affairs to adopt rules governing opt-out rights for automated decision making and risk assessment obligations. * Nebraska LB 1188 and Oklahoma HB 3447 - Bills are based on the Uniform Law Commission’s model privacy bill, the UPDPA. This model bill does not require consent for processing that “is consistent with the ordinary expectations of data subjects or is likely to benefit data subjects substantially;” consent is required for processing that is an “incompatible data practice,” and certain types of processing are prohibited. * New Jersey S 332 and A 1971 - Bills are limited to commercial Internet websites and online services only. * Washington HB 1850 - Bill contingent upon enactment of the WPA (SB 5062). * Massachusetts S 46, H 142 and H 136 - Bills replaced by the MIPSA (S 2687/H 4514). The most recent version of the IAPP’s US State Privacy Legislation Tracker can be found here. IAPP has previous editions of the Tracker for 2021, 2020, and 2018-2019. US State Privacy Legislation Tracker Comprehensive Consumer Privacy Bills 2022 Last updated: 10/7/2022 ↓ TERMS IN CHART ↓
  • 2. US State Privacy Legislation Tracker Comprehensive Consumer Privacy Bills 2022 TERMS USED IN CHART The US State Privacy Legislation Tracker chart contains terms regarding the legislative process, consumer rights and business obligations. To better understand these terms and how IAPP is using them in the chart, see below. LEGISLATIVE PROCESS Each state legislature has a unique legislative calendar and different legislative procedures. This set of columns generalizes those different legislative procedures into six categories: Introduced — A bill has been introduced on a legislative chamber floor but has not yet moved into committee. In Committee — A bill is moving through the various committees in its chamber of origin. In Cross Chamber — A bill has passed a vote in its chamber of origin and moved to the opposite chamber of the legislature (e.g., a state house of representatives passed a bill and it moved to the state senate). In Cross Committee — A bill is moving through the various committees in its non-originating chamber. Passed — Both chambers of the legislature have passed the bill. Signed — The governor signed the bill and it is now law. CONSUMER RIGHTS Right of access — The right for a consumer to access from a business/data controller the information or categories of information collected about a consumer, the information or categories of information shared with third parties, or the specific third parties or categories of third parties to which the information was shared; or, some combination of similar information. Right of rectification — The right for a consumer to request that incorrect or outdated personal information be corrected but not deleted. Right of deletion — The right for a consumer to request deletion of personal information about the consumer under certain conditions. Right of restriction — The right for a consumer to restrict a business’s ability to process personal information about the consumer. Right of portability — The right for a consumer to request personal information about the consumer be disclosed in a common file format. Right to opt-out of sales — The right for a consumer to opt out of the sale of personal information about the consumer to third parties. Right against automated decision making — A prohibition against a business making decisions about a consumer based solely on an automated process without human input. Private right of action — The right for a consumer to seek civil damages from a business for violations of a statute. BUSINESS OBLIGATIONS Opt-in default (requirement age) — A restriction placed on a business to treat consumers under a certain age with an opt-in default for the sale of their personal information. Notice/transparency requirement — An obligation placed on a business to provide notice to consumers about certain data practices, privacy operations, and/or privacy programs. Risk assessments — An obligation placed on a business to conduct formal risk assessments of privacy and/or security projects or procedures. Prohibition on discrimination (exercising rights) — A prohibition against a business treating a consumer who exercises a consumer right differently than a consumer who does not exercise a right. Purpose/processing limitation — An EU General Data Protection Regulation–style restrictive structure that prohibits the collection/processing of personal information except for a specific purpose. Last updated: 10/7/2022 ↑ BACK TO CHART ↑