Keypoint: Our legislating data privacy podcast series kicks off with an in-depth conversation with Representative Collin Walke of Oklahoma.

As readers of this blog know, the emergence of broad state consumer privacy legislation has been one of the dominant stories in privacy law since at least June 2018 when California lawmakers passed the California Consumer Privacy Act in response to Alastair Mactaggart’s ballot measure. State lawmakers have jumped into the void created by the absence of federal privacy legislation and tackled this complicated issue. In 2021 alone, lawmakers in 26 states proposed CCPA-like privacy legislation. While the federal government may eventually pass federal privacy legislation, there can be no doubt that state lawmakers are at the forefront of developing the principles that will form the foundation of privacy law in this country.

Given the importance of these issues, we decided to launch a limited podcast series interviewing some of the prominent state lawmakers who have authored these bills.

Our first guest is Oklahoma Representative Collin Walke, who was one of the authors of HB 1602, the Oklahoma Computer Data Privacy Act (Act). In March, Representative Walke put Oklahoma on the privacy law map when he steered the Act through the Oklahoma House of Representatives. Although the bill eventually failed in the Senate, Representative Walke intends to introduce it again next year in the hopes of providing Oklahoma residents with strong privacy rights.

Click here to listen to our conversation with Representative Walke.

Keypoint: This week the Colorado legislature passed the Colorado Privacy Act.

Below is our sixteenth weekly update on the status of proposed CCPA-like privacy legislation. Before we get to our update, we need to make a few announcements.

This will be our last weekly update – for now. With the legislatures in so many states having adjourned for the year and the bills in the remaining states not moving forward, we will be pausing our weekly updates. Rest assured, we will be back when things heat up again.

Even though we are pausing our weekly updates, we are not slowing down our work on state consumer privacy legislation.

On June 15, we will be hosting a webinar on the Colorado Privacy Act. Click here to register.

Starting Monday, June 21, we will be releasing a limited podcast series with interviews of state lawmakers who spearheaded privacy legislation in 2021. If you want to know the inside story on how these bills are drafted and lobbied, you will not want to miss these interviews.

Finally, if you are not already subscribed to our blog, consider doing so to stay updated.

Continue Reading Status of Proposed CCPA-Like State Privacy Legislation as of June 14, 2021

Keypoint: The Texas legislature has determined that companies who experience a data breach affecting Texas residents need to have their names in lights—but not in a good way.

House Bill 3746, which passed both the House and the Senate last week and has been sent to Governor Abbott for signature, amends Texas’s breach notification law to require the Attorney General’s office to maintain a publicly accessible page on its website containing every notification of a data breach it has received over the past year.

Continue Reading Texas Amends Its Breach Notification Law

Keypoint: Once signed by the Governor, Colorado will become the third state to pass broad consumer privacy legislation.

On June 8, 2021, the Colorado legislature officially passed the Colorado Privacy Act with the Senate voting unanimously to adopt the House amendments to the bill. Once signed by the Governor, Colorado will become just the third state – after California and Virginia – to pass broad consumer privacy legislation.

Do you want to know more about the CPA? Members of Husch Blackwell’s privacy and cybersecurity practice group will host a webinar on Tuesday, June 15, 2021, to analyze the CPA and how it compares to the laws in California and Virginia. Click here for more information and to register.

Keypoint: The bill will now return to the Senate to accept or reject the House amendments.

On the night of June 7, 2021, the Colorado House voted 57-7 to pass the Colorado Privacy Act (CPA). As we previously reported, the Colorado Senate unanimously passed the CPA on May 26. Because the House amended the Senate version of the CPA, the bill will now return to the Senate for it to accept the amendments, reject the amendments, or reject the amendments and ask for a conference committee.

Continue Reading Colorado House Passes Colorado Privacy Act

Keypoint: This week the Colorado legislature continued to advance the Colorado Privacy Act, and the Nevada Governor signed into law a bill that will broaden the state’s pre-existing right to opt out of sales as of October 1, 2021.

Below is our fifteenth weekly update on the status of proposed CCPA-like privacy legislation. Before we get to our update, we wanted to provide two reminders.

First, we have been regularly updating our 2021 State Privacy Law Tracker to keep pace with the latest developments. We encourage you to bookmark the page for easy reference.

Second, the contents provided below are time-sensitive and subject to change. If you are not already subscribed to our blog, consider doing so to stay updated.

Continue Reading Status of Proposed CCPA-Like State Privacy Legislation as of June 7, 2021

Keypoint: Companies using the previous standard contractual clauses will have eighteen months to transition to the new documents.

Today, the European Commission announced that it has adopted “two sets of standard contractual clauses, one for use between controllers and processors and one for the transfer of personal data to third countries.” The new SCCs take into account new requirements under the General Data Protection Regulation as well as the Court of Justice’s Schrems II opinion.

Continue Reading European Commission Adopts New Standard Contractual Clauses

Keypoint: This week the Colorado Senate passed the Colorado Privacy Act, the Nevada legislature passed a bill to broaden the state’s pre-existing right to opt out of sales, and the New York Privacy Act advanced to a third reading in the Senate.

Below is our fourteenth weekly update on the status of proposed CCPA-like privacy legislation. Before we get to our update, we wanted to provide two reminders.

First, we have been regularly updating our 2021 State Privacy Law Tracker to keep pace with the latest developments. We encourage you to bookmark the page for easy reference.

Second, the contents provided below are time-sensitive and subject to change. If you are not already subscribed to our blog, consider doing so to stay updated.

Continue Reading Status of Proposed CCPA-Like State Privacy Legislation as of May 31, 2021

Keypoint: The Colorado Senate unanimously passed the Colorado Privacy Act after amending the bill to add back many of the privacy protections previously removed.

On May 26, 2021, the Colorado Senate unanimously passed the Colorado Privacy Act. The bill now moves to the State Assembly. The Colorado legislature is scheduled to close on June 12 so we will know in just a matter of weeks (if not sooner) if Colorado will become the third state to enact broad consumer privacy legislation.

Two House sponsors were added to the bill – Republican Terri Carver and Democrat majority co-whip Monica Dunn. The addition of bipartisan House sponsors perhaps signals that the bill has momentum to pass the House.

Notably, the Senate significantly amended the bill from the version previously passed by the Senate Business, Labor & Technology Committee. As discussed in our May 12 post, the Senate committee had revised many of the bill’s pro-consumer provisions to pro-business provisions. The bill that ultimately passed the Senate (see here) reverted many of those changes. Below is a summary of some of the notable revisions.

Continue Reading Significantly Amended (Again) Colorado Privacy Act Passes Senate

Keypoint: If signed by the Governor, entities doing business in Nevada will need to examine their data transfers to determine whether they constitute “sales” under the broader definition.

On May 25, 2021, the Nevada legislature passed SB260. The bill will now be sent to the Governor for approval or veto. Assuming the Governor signs the bill, it will amend Nevada’s online privacy notice statutes, NRS 603A.300-360, to provide Nevada residents with a broader right to opt out of sales.

Continue Reading Nevada Legislature Passes SB260; Will Broaden Right to Opt Out of Sales