December 30, 2024

U.S. Privacy and Data Protection | Insights | Dec. 2024 (State Law)

Portrait Liana Chen
By Liana Chen

Partner

2024 was an ever-growing year for data privacy and security legislation, marking significant growth on both a federal and state level, with no signs of slowing down. To put your business in a good position, it is important to review data protection practices and anticipate privacy legislation that will be rolling out in the new year.

Here is an overview of some upcoming state regulations in 2025, including compliance requirements for businesses and when they go into effect. These new laws are in addition to existing comprehensive data privacy laws, including in California, Colorado, Connecticut, Utah, Virginia, Texas, Montana, Nevada, and Oregon, and laws in specific areas such as for biometric, health, financial, credit, minor/children, large social media, wiretap/recording, employment, and artificial intelligence (AI) issues.

State Privacy Laws Effective in January 2025:

Delaware Personal Privacy Data Act (DPDPA), effective January 1, 2025

Provides e.g., the right to opt out of the sale of data and to opt in for sensitive data processing.

Iowa Consumer Data Protection Act (Iowa CDPA), effective January 1, 2025

Provides e.g., the right to opt out of the sale of data and to opt out for sensitive data processing.

Nebraska Data Privacy Act (NDPA), effective January 2025

Provides e.g., the right to opt out of the sale of data and to opt in for sensitive data processing.

New Hampshire Data Privacy Act (NHPA), effective January 1, 2025

Provides e.g., the right to opt out of the sale of data and to opt in for sensitive data processing.

New Jersey Data Privacy Act (NJDPA), effective January 15, 2025

Provides e.g., the right to opt out of the sale of data and to opt in for sensitive data processing.

There are other state privacy laws with effective dates later in 2025 and in 2026, including in Tennessee, Minnesota, Maryland, Indiana, Kentucky, and Rhode Island.

This evolving landscape emphasizes the need for businesses to remain compliant with varying state law, including as they adapt to prioritize consumers’ rights and protections. Failure to stay up to date with these regulations can lead to potential fines and legal action. Kronenberger Rosenfeld, LLP regularly advises clients regarding advertising and privacy compliance. Contact our firm using our online case submission form here.

This entry was posted on Monday, December 30, 2024 and is filed under Privacy and Data Protection Updates, Internet Law News.



Related articles

Privacy & Cybersecurity

U.S. Privacy and Data Protection | Insights |

As many businesses are already aware of the California Consumer Privacy Act (CCPA) in California, it is important to note there are also now dozens of enacted and proposed state...

Read Article

Privacy & Cybersecurity

U.S. Privacy and Data Protection | Insights |

FTC Brings Enforcement Action Against Hotel Chain After experiencing multiple large-scale data breaches, Marriott International, Inc. and its subsidiary Starwood Hotels & Resorts Worldwide LLC have agreed to a significant...

Read Article

Privacy & Cybersecurity

Secure Passwords Are the Key to Your Online

Over 50% of Americans have been a victim of cybercrime, and one of the most common ways criminals gain access to our personal information is by stealing passwords. A strong...

Read Article

Privacy & Cybersecurity

U.S. Privacy and Data Protection | Insights |

U.S. Privacy and Data Protection | Insights | June 2024 (Federal Law) The Federal Trade Commission (FTC) continues to target data privacy and security issues. For example, the FTC has...

Read Article
Get the help you need.

We offer legal advice on a wide range of online topics

Get legal help now

Not seeing what you’re looking for?

Submit your case in 3 minutes and get legal help fast.

Submit your case online

OR

Give us a call
Join our mailing list

Stay ahead of legal matters

The internet moves fast. We'll keep you informed.