• Utah Consumer Privacy Act, effective December 31, 2023 • Delaware Personal Data Privacy Act, effective January 1, 2025 • Iowa Consumer Data Protection Act, effective January 1, 2025 • Indiana Consumer Data Protection Act , effective January 1, 2026 • Tennessee Information Protection Act, effective July 1, 2025 • Texas Data Privacy and Security Act, effective July 1, 2024 • Montana Consumer Data Privacy Act, effective October 1, 2024 • Oregon Consumer Privacy Act , effective July 1, 2024 • New Jersey Data Protection Act, effective January 15, 2025 • New Hampshire Privacy Act, effective January 1, 2025 • Kentucky Consumer Data Protection Act, effective January 1, 2025 • Nebraska Data Privacy Act, effective January 1, 2025 • Maryland Online Data Privacy Act, effective October 1, 2025 • Minnesota Consumer Data Privacy Act, effective July 31, 2025 • Rhode Island Data Transparency and Privacy Protection Act, effective January 1, 2026 This patchwork of laws has become of particular concern when it comes to data breach notification. All fifty states, Washington DC, Guam, Puerto Rico, and the U.S. Virgin Islands have enacted some form of legislation requiring notification of security breaches involving personal information. California has been far and away the most active in its efforts to enact laws protecting the privacy of its citizens and to enforce these laws. California’s Office of Information Security and Privacy Protection, and the California Attorney General have been aggressive in promoting and protecting the privacy rights of California consumers. The CPRA which became effective
79
Made with FlippingBook - Online Brochure Maker