Skip to Main Content

Related areas of focus:

California Consumer Privacy Act  Colorado Privacy Act Resource Center  Data Privacy & Cybersecurity  Education Privacy Law  EU Data Protection and Privacy 
 
Capabilities / State Privacy Laws

State Privacy Laws

Guiding clients through the changing landscape of U.S. state privacy laws.

Privacy law in the United States is rapidly changing. The California Consumer Privacy Act (CCPA) took effect January 1, 2020, and became enforceable July 1, 2020, bringing sweeping change that affords considerable privacy rights to California residents and adds significantly to the compliance obligations of covered entities. In November 2020, California voters passed an amendment to the CCPA, which went into effect January 1, 2023. Lawmakers in Virginia and Colorado then passed similar bills. In 2021 alone, legislatures in 27 states considered enacting similar legislation, including Arizona, Connecticut, Florida, Illinois, Maryland, Massachusetts, Minnesota, Oklahoma, Rhode Island, Utah, Texas, Vermont and Washington. Other states are expected to follow. Additionally, related privacy measures are emerging. In Illinois, for example, numerous companies are facing compliance and litigation burdens stemming from the Illinois Biometric Information Privacy Act (BIPA).

Husch Blackwell’s Data Privacy and Cybersecurity team is actively following the evolving changes in state privacy laws on our Byte Back blog.

State Privacy Law Tracker >

2023 State Privacy Law Tracker Map

Articles | January 30, 2023
Practical Guidance: Revised Colorado Privacy Act Draft Rules Published
Blog | January 30, 2023
Proposed State Privacy Law Update: January 30, 2023
Blog | January 27, 2023
Third Version of Colorado Privacy Act Draft Rules Published
Blog | January 26, 2023
Children's State Privacy Law Tracker Released
Blog | January 22, 2023
Proposed State Privacy Law Update: January 23, 2023
Podcast | January 20, 2023
TerraTrue, The Privacy Beat Podcast, The states are dropping privacy bills like they're hot: Here's a debrief
Blog | January 14, 2023
Proposed State Privacy Law Update: January 16, 2023
Blog | January 06, 2023
2023 State Privacy Law Tracker Released
Blog | December 21, 2022
Revised Colorado Privacy Act Draft Rules Published
Blog | November 25, 2022
The Future of State Privacy Legislation After the 2022 Election
Blog | November 03, 2022
CPRA Proposed Regulations Formally Noticed for 15 Day Comment Period
Blog | October 29, 2022
CPPA Board Advances Proposed CPRA Regulations
Blog | October 17, 2022
Modified CPRA Proposed Regulations Issued
Blog | October 01, 2022
Colorado Privacy Act Draft Rules Published
Blog | September 01, 2022
California Legislature Fails to Extend CCPA Employee and B2B Data Exemptions
Blog | August 29, 2022
CCPA Update: Cal. AG Releases Thirteen New Enforcement Case Examples
Blog | August 24, 2022
California Attorney General Announces First Public CCPA Enforcement Action
Articles | August 23, 2022
IAPP The Privacy Advisor: State data privacy legislation: Takeaways from 2022 and what to expect in 2023
Articles | August 18, 2022
Law360: Breaking Down The Amended Federal Data Privacy Bill (log-in required)
Podcast | August 17, 2022
Data Privacy Unlocked, A Second Conversation with Joseph Duball of the IAPP
Blog | August 01, 2022
Analyzing the American Data Privacy and Protection Act's Private Right of Action
Blog | July 20, 2022
Federal Privacy Bill Advances to House Floor
Blog | July 08, 2022
CPPA Commences Formal CPRA Rulemaking
Podcast | June 29, 2022
Data Privacy Unlocked, A Second Conversation with State Senator James Maroney of Connecticut
Blog | June 25, 2022
Federal Privacy Bill Voted Out of House Subcommittee
Blog | June 21, 2022
Husch Blackwell Submits Comments on Colorado Privacy Act Pre-Rulemaking
Blog | June 03, 2022
Bipartisan U.S. Federal Privacy Bill Circulated
Blog | May 29, 2022
CPRA Draft Regulations Issued
Blog | May 24, 2022
U.S. Children's Privacy Law Update
Blog | May 16, 2022
Proposed State Privacy Law Update: May 16, 2022
Podcast | May 09, 2022
Data Privacy Unlocked, A Conversation with Colorado Attorney General Phil Weiser
Blog | May 08, 2022
Proposed State Privacy Law Update: May 9, 2022
Blog | May 05, 2022
New York Employee Monitoring Law Goes Into Effect May 7, 2022
Blog | May 02, 2022
Proposed State Privacy Law Update: May 2, 2022
Podcast | April 28, 2022
Data Privacy Unlocked, A Conversation with Kentucky Senator Whitney Westerfield
Blog | April 28, 2022
Connecticut Legislature Passes Consumer Privacy Act
Blog | April 24, 2022
Proposed State Privacy Law Update: April 25, 2022
Blog | April 21, 2022
Connecticut Senate Passes Consumer Data Privacy Bill
Blog | April 17, 2022
Proposed State Privacy Law Update: April 18, 2022
Blog | April 13, 2022
Virginia Governor Signs VCDPA Amendment Bills into Law
Blog | April 10, 2022
Proposed State Privacy Law Update: April 11, 2022
Blog | April 05, 2022
How do the CPRA, VCDPA & CPA treat consumer requests?
Blog | April 04, 2022
Proposed State Privacy Law Update: April 4, 2022
Blog | March 29, 2022
How do the CPRA, VCDPA, and the CPA treat children's data?
Blog | March 27, 2022
Proposed State Privacy Law Update: March 28, 2022
Blog | March 23, 2022
Oklahoma House Passes Consumer Data Privacy Bill
Blog | March 22, 2022
How do the CPRA, CPA, and VCDPA treat data processing agreements?
Blog | March 21, 2022
Proposed State Privacy Law Update: March 21, 2022
Blog | March 16, 2022
How do the CPRA, CPA, and VCDPA treat dark patterns?
Blog | March 15, 2022
CCPA Update: California Attorney General Issues Opinion on Disclosure of Inferences
Blog | March 14, 2022
Iowa House Passes Consumer Data Privacy Bill
Blog | March 13, 2022
Proposed State Privacy Law Update: March 14, 2022
Podcast | March 10, 2022
Data Privacy Unlocked, A Conversation with Massachusetts Representatives Dave Rogers & Andy Vargas
Blog | March 09, 2022
How do the CPRA, CPA & VCDPA treat opt-out signals?
Blog | March 03, 2022
How do the CPRA, CPA & VCDPA treat sales?
Blog | February 28, 2022
Proposed State Privacy Law Update: Feb. 28, 2022
Blog | February 23, 2022
Wisconsin Assembly Passes Consumer Data Privacy Bill
Blog | February 21, 2022
CPRA Update: Multiple Bills Filed, Including Proposals to Extend the Employee and B2B Exemptions
Blog | February 20, 2022
Proposed State Privacy Law Update: Feb. 21, 2022
Blog | February 17, 2022
CPRA Update: California Privacy Protection Agency Announces Rulemaking Timeline
Blog | February 16, 2022
How do the CPRA, CPA, and VCDPA treat sensitive personal information?
Blog | February 13, 2022
Proposed State Privacy Law Update: Feb. 14, 2022
Podcast | February 10, 2022
Data Privacy Unlocked, A Conversation with Alaska State Representative Zack Fields
Blog | February 10, 2022
Legislating Data Privacy Series: A Conversation with Alaska Representative Zack Fields
Blog | February 09, 2022
How do the CPRA, CPA & VCDPA approach data protection assessments?
Blog | February 06, 2022
Proposed State Privacy Law Update: Feb. 7, 2022
Blog | February 03, 2022
Analyzing the CCPA's Notice of Financial Incentive Requirement in the Wake of the Attorney General's Issuance of Violation Notices for Loyalty Program
Blog | February 02, 2022
How do the CPRA, CPA & VCDPA treat biometric information?
Blog | February 01, 2022
Indiana Senate Passes Consumer Data Privacy Bill
Blog | January 31, 2022
Proposed State Privacy Law Update: Jan. 31, 2022
Blog | January 31, 2022
Colorado AG to Engage in Robust Colorado Privacy Act Rulemaking
Blog | January 27, 2022
How do the CPRA, CPA, & VCDPA treat publicly available information?
Articles | January 25, 2022
Security Magazine: Amendments proposed to Virginia Consumer Data Protection Act
Blog | January 23, 2022
Proposed State Privacy Law Update: Jan. 24, 2022
Podcast | January 20, 2022
Data Privacy Unlocked, A Conversation with Maureen Mahoney of Consumer Reports
Articles | January 18, 2022
Westlaw Today: Numerous states to consider CCPA-like privacy bills in 2022
Blog | January 17, 2022
Proposed State Privacy Law Update: Jan. 18, 2022
Blog | January 16, 2022
Amendments Proposed to Virginia Consumer Data Protection Act
Blog | January 10, 2022
2022 State Privacy Law Tracker Released
Blog | January 09, 2022
Four More Consumer Data Privacy Bills Introduced in US
Alerts | January 03, 2022
Which States Will Consider CCPA-Like Consumer Privacy Bills in 2022?
Blog | January 03, 2022
Which States Will Consider CCPA-Like Consumer Privacy Bills in 2022?
Podcast | November 12, 2021
Data Privacy Unlocked, A Conversation with State Senator Robert Rodriguez of Colorado, Part II
Podcast | November 03, 2021
Data Privacy Unlocked, A Conversation with State Senator Robert Rodriguez of Colorado, Part I
Blog | September 22, 2021
CPRA Regulations: California Privacy Protection Agency Commences Preliminary Rulemaking Process
Articles | September 15, 2021
DataGuidance: Colorado: Analysing controller obligations under the Colorado Privacy Act
Podcast | September 09, 2021
Data Privacy Unlocked, A Conversation with State Senator James Maroney of Connecticut
Podcast | August 17, 2021
Data Privacy Unlocked, A Conversation with Joseph Duball of IAPP
Articles | August 03, 2021
OneTrust DataGuidance: Colorado: Analysing the Colorado Privacy Act
Podcast | July 21, 2021
Data Privacy Unlocked, A Conversation with Representative Fiona McFarland of Florida
Podcast | July 13, 2021
Data Privacy Unlocked, A Conversation with Representative Domingo DeGrazia of Arizona
Podcast | July 06, 2021
Data Privacy Unlocked, A Conversation with Representative Shelley Kloba of Washington State
Podcast | June 28, 2021
Data Privacy Unlocked, A Conversation with Representative Steve Elkins of Minnesota
Podcast | June 21, 2021
Data Privacy Unlocked, A Conversation with Representative Collin Walke of Oklahoma
Articles | May 13, 2021
WireWheel: U.S. Data Privacy Regime: It's a Long Road to Efficacy
Podcast | May 10, 2021
Colorado = Security Podcast: 210 - 5/10 - David Stauss, Partner at Husch Blackwell
Articles | March 11, 2021
Security Magazine: New York's DFS publishes a Cyber Insurance Risk Framework
Articles | June 25, 2020
InBusiness Madison Legal Login: Bipartisan group of senators proposes privacy bill for COVID-19 contact-tracing apps
Blog | June 22, 2020
Analyzing the California Attorney General's Comments on Drafting Privacy Policies
Articles | June 19, 2020
Corporate Counsel: Business Considerations for Complying With the Final CCPA Regulation (log-in required)
Blog | June 01, 2020
Bipartisan Group of Senators Proposes Privacy Bill for COVID-19 Contact-Tracing Apps
Alerts | May 13, 2020
Seventh Circuit Rules that Illinois BIPA Claimants have Standing to Pursue Action in Federal Court
Blog | May 11, 2020
CCPA 2.0: Analysis of the California Privacy Rights Act's Implementation Timeline
Blog | April 13, 2020
CCPA Update: AG Says CCPA Privacy Rights Now "More Important Than Ever"
Articles | March 27, 2020
Bloomberg Law INSIGHT: Responding to CCPA Requests During the Coronavirus Pandemic
Articles | March 2020
Security Magazine Washington Privacy Act Update: Private Right of Action Added in House
Blog | February 24, 2020
Analyzing the 2020 Wisconsin Data Privacy Act
Articles | February 13, 2020
Corporate Counsel CCPA Update: AG's Office Publishes Modified Proposed Regulations
Articles | February 13, 2020
Bloomberg Law INSIGHT: CCPA Ink Still Wet While Signatures Being Collected for ‘CCPA 2.0' Ballot Initiative
Articles | February 11, 2020
Law360 Expert Analysis: What Cos. Need To Know About New Washington Privacy Bill (log-in required)
Seminars | January 25, 2023
The American Data Privacy and Protection Act: How it Could Change U.S. Privacy Law
Webinar | October 20, 2022
Analyzing the Colorado Privacy Act Draft Rules
Webinar | June 9, 2022
Analyzing the California Privacy Rights Act Draft Regulations
Speaking Engagements | May 18, 2022
Speaker, "Connecticut Joins US Privacy Landscape with New Law," OneTrust DataGuidance
Webinar | May 5, 2022
U.S. Privacy Law Update: Analyzing the Connecticut Data Privacy Act
Webinar | March 7, 2022
What is the Utah Consumer Privacy Act?
Webinar | February 23, 2022
U.S. Privacy Law Update: Tracking Proposed State Privacy Legislation (February 23, 2022)
Webinar | September 28, 2021
Privacy Law Update - Analyzing Recent Developments in U.S. and International Privacy Law
Webinar | November 2020
Privacy Law Update - CCPA 2.0: Analyzing the California Privacy Rights Act
Webinar | August 5, 2020
Privacy Law Update: GDPR, CCPA, CCPA 2.0, and Proposed State and Federal Legislation
Webinar | June 5, 2020
Analyzing the AG's Final CCPA Regulations
Webinar | May 27, 2020
CCPA 2.0: What is the California Privacy Rights Act?
Webinar | February 12, 2020
Analyzing the AG's Modified CCPA Regulations
Webinar | February 4, 2020
U.S. Privacy Law Update: CCPA, CCPA 2.0 & Other Proposed State Privacy Laws
Media Mentions | January 30, 2023
IAPP Daily Dashboard: Attorney general releases latest revisions to Colorado Privacy Act draft rules
Media Mentions | January 19, 2023
Bloomberg Law: Data Privacy ‘Panoply' Looms as States Move to Fill Federal Hole
Media Mentions | January 04, 2023
IAPP The Privacy Advisor: 2023 brings US state privacy law preparedness into focus
Media Mentions | January 03, 2023
Axios: States' long-awaited data privacy laws are going into effect
Media Mentions | January 03, 2023
IAPP Daily Dashboard: Attorney general drops revised Colorado Privacy Act draft rules
Media Mentions | December 30, 2022
LexBlog: Ten Things: Best Blogs (and Other Media) for In-House Lawyers (2022 Edition)
Media Mentions | October 31, 2022
IAPP Daily Dashboard: Proposed CPRA regulations move forward, public comment period to open soon
Media Mentions | October 21, 2022
Law360: Colo. Privacy Rules Spotlight Emerging Patchwork Of Laws (log-in required)
Media Mentions | October 21, 2022
Bloomberg Law: Colorado Consumer Privacy Rules Add to Looming Business Mandates
Media Mentions | October 03, 2022
IAPP Daily Dashboard: Attorney general publishes Colorado Privacy Act draft regulations
Media Mentions | September 27, 2022
IAPP The Privacy Advisor: People on the Move: October 2022
Media Mentions | September 21, 2022
The Future of Privacy Forum: The "Colorado Effect?" Status Check on Colorado's Privacy Rulemaking
Media Mentions | September 07, 2022
Avast: The latest privacy legal environment is getting interesting
Media Mentions | August 30, 2022
IAPP Daily Dashboard: Taking stock of the US state privacy landscape
Media Mentions | August 09, 2022
Law360: Colo. AG Urged To Focus On Harmonization In Privacy Rules (log-in required)
Media Mentions | July 21, 2022
Cybersecurity Dive: California privacy rules target dark patterns through technology design
Media Mentions | July 18, 2022
Data Guidance: Connecticut: Analysing the CTDPA
Media Mentions | May 31, 2022
Law360: Calif. Privacy Agency Unveils Long-Awaited Draft Regulations (log-in required)
Media Mentions | May 12, 2022
Communications Daily: Conn. Enacts 5th State Privacy Law; La. Bill Faces Hurdle (log-in required)
Media Mentions | May 12, 2022
Law360: Conn. Privacy Law Hikes Pressure On Congress To Set Rules (log-in required)
Media Mentions | May 11, 2022
Cybersecurity Law Report: Party of Five: Connecticut Law Solidifies Consensus on State Privacy Standards (log-in required)
Media Mentions | May 06, 2022
IAPP Daily Dashboard: New York's employee monitoring law takes effect May 7
Media Mentions | May 02, 2022
Adweek: Connecticut's Digital Privacy Law Is Uncompromising to Businesses
Media Mentions | April 29, 2022
IAPP: Connecticut set to join the state privacy law ranks
Media Mentions | April 25, 2022
Avast: The latest changes to US state data privacy laws
Media Mentions | April 18, 2022
IAPP Daily Dashboard: Virginia governor signs VCDPA amendment bills
Media Mentions | April 16, 2022
CT Insider: Sweeping CT privacy bill aims to give web users more control of sensitive data
Media Mentions | April 13, 2022
Cybersecurity Law Report: California AG Opinion Hands Companies New Tasks for AI, Data Maps, Marketing (log-in required)
Media Mentions | April 01, 2022
Law360: GC Cheat Sheet: The Hottest Corporate News Of The Week (log-in required)
Media Mentions | March 29, 2022
Law360: Utah Sets New Floor In Joining Consumer Privacy Law Fray (log-in required)
Media Mentions | March 08, 2022
Bloomberg Law: Utah Privacy Bill Lacking Right to Sue May Pave GOP States' Way
Media Mentions | March 03, 2022
Law360: Utah Poised To Become 4th State With Consumer Privacy Law (log-in required)
Media Mentions | February 23, 2022
Avast: 2022 Data Privacy Legislation Update
Media Mentions | February 22, 2022
Law360: Calif. Bill Would Keep Employee Data Out Of Privacy Law (log-in required)
Media Mentions | February 02, 2022
Bloomberg Law: Indiana Senate Passes Consumer Privacy Bill Lacking Right to Sue (log-in required)
Media Mentions | February 01, 2022
Bloomberg Law: Privacy & Data Security Outlook 2022
Media Mentions | January 18, 2022
IAPP Daily Dashboard: Lawmakers to consider VCDPA amendments
Media Mentions | January 13, 2022
Communications Daily: States Begin 2022 With Flurry of Privacy Bills (log-in required)
Media Mentions | January 03, 2022
Bloomberg Law: 2022 Privacy Legislation Success Viable as Three States Lead Way
Media Mentions | June 23, 2021
Cybersecurity Law Report: Colorado Privacy Law Finishes Third, but Could Become the New Standard (log-in required)
Media Mentions | June 09, 2021
IAPP The Privacy Advisor: Colorado Privacy Act passes, professionals ponder effects
Media Mentions | June 08, 2021
Bloomberg Law: Colorado Consumer Privacy Bill Heads to Governor for Approval (log-in required)
Media Mentions | June 02, 2021
IAPP Daily Dashboard: Nevada amends opt-out law and other state legislative updates
Media Mentions | May 27, 2021
IAPP Daily Dashboard: Colorado Senate unanimously passes privacy bill
Media Mentions | May 26, 2021
Bloomberg Law: Colorado Senate Passes Consumer Privacy Bill Unanimously (log-in required)
Media Mentions | May 13, 2021
IAPP Daily Dashboard: Colorado Privacy Act to be discussed at Senate Appropriations Committee hearing
News | April 28, 2021
IAPP Daily Dashboard: State privacy law updates from Florida, Nevada
Media Mentions | April 23, 2021
Ad Age: Data privacy laws sprout from Alaska to Virginia, thanks to bipartisan support
Media Mentions | March 24, 2021
IAPP Daily Dashboard: State privacy law updates from Florida, Nevada, West Virginia
Media Mentions | March 18, 2021
LexBlog This Week in Legal Blogging: Byte Back's David Stauss on the importance of blogging with your audience in mind
Media Mentions | March 05, 2021
IAPP Daily Dashboard: Oklahoma House passes privacy legislation
Media Mentions | February 10, 2021
The Hill: New state privacy initiatives turn up heat on Congress
News | February 10, 2021
IAPP Daily Dashboard: US lawmakers keeping tabs on state privacy bills
Media Mentions | January 29, 2021
IAPP The Privacy Advisor Podcast: What's ahead for US state privacy legislation in 2021? A conversation with David Stauss
Media Mentions | January 21, 2021
IAPP Daily Dashboard: Va., Okla., become latest states to propose privacy legislation
Media Mentions | January 15, 2021
IAPP Daily Dashboard: NY, Minn. Legislatures consider new privacy bills
Media Mentions | September 29, 2020
IAPP Privacy Advisor: Privacy pros underwhelmed by Texas privacy council's report
Media Mentions | September 15, 2020
IAPP Daily Dashboard: Legislative updates from Texas, Mich.
News Releases | August 04, 2020
IAPP Designates David Stauss as Privacy Law Specialist
Media Mentions | April 28, 2020
Biometric Update: Law firms weigh in on privacy rules for biometrics for online work and school, temperature screening
Media Mentions | March 09, 2020
IAPP Daily Dashboard: House passes Washington Privacy Act amendments

Related areas of focus:

California Consumer Privacy Act  Colorado Privacy Act Resource Center  Data Privacy & Cybersecurity  Education Privacy Law  EU Data Protection and Privacy 

Key Contact

David M. Stauss

Partner
View our entire team 
Navigating the maze.
Receive Husch Blackwell data privacy and cybersecurity insights in your inbox 
Stay informed of the ever-evolving data privacy landscape.
Stay informed of the ever-evolving data privacy landscape.
Learn more on our privacy law blog 
Podcast: Data Privacy Unlocked
Podcast: Data Privacy Unlocked
Tune in to hear the latest on state consumer privacy legislation 
Link to Homepage
People Capabilities Locations Careers Thought Leadership Our FirmContact Us
 
© 2023 Husch Blackwell LLP. All rights reserved
Firm InstagramFirm TwitterFirm LinkedInFirm FacebookFirm YouTubeFirm TikTokFirm TikTok
Privacy Policy Cookie Policy California Collection Notice Do Not Sell My Personal Information Transparency in Coverage Rule
 
The choice of a lawyer is an important decision and should not be based solely upon advertisements.
Past results afford no guarantee of future results. Every case is different and must be judged on its own merits.
Link to Homepage
People Capabilities Locations Careers Thought Leadership Our FirmContact Us
 
Firm InstagramFirm TwitterFirm LinkedInFirm FacebookFirm YouTubeFirm TikTokFirm TikTok
Privacy Policy Cookie Policy California Collection Notice Do Not Sell My Personal Information Transparency in Coverage Rule
© 2023 Husch Blackwell LLP. All rights reserved
The choice of a lawyer is an important decision and should not be based solely upon advertisements.
Past results afford no guarantee of future results. Every case is different and must be judged on its own merits.