U.S. State Privacy Laws Resource Center
Stay on top of significant updates to U.S. State Consumer Privacy Laws with our Privacy + Data Security team’s client alerts, news, and webinars.
Your Resources for the U.S. State Consumer Privacy Laws
Since the United States’ first comprehensive consumer privacy law, the California Consumer Privacy Act, became operative, a number of other states have followed suit. Comprehensive consumer privacy laws are now also operative in Colorado, Connecticut, Utah, and Virginia, and similar laws in Iowa, Indiana, Tennessee, Montana, Florida, Texas, Oregon, Delaware, and New Jersey will become operative in 2024 and beyond.
These state laws require that businesses have privacy notices that contain specific information and give consumers rights, such as the right to access, correct, and delete their personal information, to opt out of the sale of their personal information and its use for targeted advertising and automated decision-making, and to consent to, or opt out of, the use of their sensitive personal information. The laws also require businesses to protect personal information, conduct privacy assessments, and not give consumers less favorable terms when they exercise their rights. The laws also contain special protections for children, purpose limitations, data minimization requirements, and required provisions for contracts with service providers.
Our team has been closely monitoring the developments related to these laws, and similar pending state bills across the United States, and we have written and presented extensively on these laws and their practical implications. We are providing the resources on these pages as an overview to help companies identify their obligations, track legislative and enforcement trends, and ultimately mitigate risk.
U.S. State Privacy Laws Map
Key Contacts
Resource Centers
Privacy Library
Privacy Library
The Privacy Library is the most comprehensive collection of privacy laws and regulations ever assembled,
GDPR + European Privacy Resource Center
GDPR + European Privacy Resource Center
Privacy and data protection compliance in Europe is a C-suite level priority for all organizations.
China Privacy and Data Security
China Privacy and Data Security
With its growing complexity of network security and data privacy legislation and standards, China has become a critical part of our global practice.
Cybersecurity Resource Center
Cybersecurity Resource Center
We work with clients to help them be aware of critical cyber risks and prepare for incidents.
Whistleblowing Resource Center
Whistleblowing Resource Center
Your Resources for the GDPR and the Whistleblowing Directive
A MoFo Privacy Minute Series
A MoFo Privacy Minute Series
A MoFo Privacy Minute: where we will answer the questions our clients are asking us in sixty seconds or less.