Conclusions
There’s no way around it, navigating the current patchwork of state-level privacy laws can feel incredibly messy. Just when you think your data privacy program is compliant across the board, you may discover a new regulation or area of enforcement in a particular state.
With no federal U.S. privacy law in sight, it’s up to individual states to determine their approach to privacy governance. With 20+ state laws on the books, it’s important to exercise due diligence to address any areas within a given law that differ from the overwhelming majority. Getting a handle on them now will put you ahead of the curve once state-level laws become the rule instead of the exception.
While many state privacy laws overlap on their approach, they’re rarely identical. Take Minnesota as an example, which prohibits businesses from disclosing certain information in an Access request that might be mandatory to disclose in another state. Businesses must scale to remain flexible with a patchwork of privacy regulations.
By reading this, you’re already one step ahead. You understand how privacy law is changing business practices across the US, and you’re in a position to leverage this opportunity.
Take control of your organization’s data collection practices, put automated privacy processes in place where you can, and aim for full transparency with your customers. Getting these fundamentals right will help you thrive in this new privacy-focused landscape.