AI and Data Privacy: Legal Requirements (2026)
How AI intersects with data privacy law. Covers the EU AI Act, Colorado SB 205, CCPA automated decisions, FTC enforcement, and state laws.
11 min read
Loading...
Data Privacy Laws
347 articles
Alabama Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Alabama has no standalone biometric privacy law. Learn how the Data Breach Notification Act protects biometric data, penalties up to $500K, and employer obligations.
8 min read
Alabama Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Alabama's data breach notification rules under the 2018 Act, including the 45-day deadline, AG reporting requirements, penalties, and exemptions.
9 min read
Alabama Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Complete guide to Alabama data privacy laws including the Data Breach Notification Act of 2018, security requirements, penalties, and the pending Personal Data Protection Act.
16 min read
Alaska Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Alaska has no biometric privacy law despite multiple legislative attempts. Learn what protections exist, gaps in coverage, and pending bills as of 2026.
8 min read
Alaska Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Alaska requires breach notification without unreasonable delay. One of ~12 states with a private right of action for actual damages up to $500.
9 min read
Alaska Data Privacy Laws: Constitutional Privacy & Breach Rules (2026)
Alaska data privacy laws explained. Learn about constitutional privacy rights, breach notification under AS 45.48, biometric protections, and SSN safeguards.
14 min read
Argentina Data Privacy Laws: PDPL Compliance Guide (2026)
Argentina's Personal Data Protection Law (Ley 25.326) governs data privacy with EU adequacy status confirmed January 2024. Covers AAIP enforcement, habeas data, Ley Olimpia, pending GDPR reform, and 2024-2026 developments.
22 min read
Arizona Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Arizona has no standalone biometric privacy law. Learn how ARS 18-551/552 protects biometric data in breaches, penalties up to $500K, and pending legislation.
7 min read
Arizona Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Arizona requires data breach notification within 45 days under A.R.S. §§ 18-551 and 18-552. Learn who must report, what triggers notice, and penalties up to $500,000.
9 min read
Arizona Data Privacy Laws: Breach Rules & Consumer Rights (2026)
Arizona has no comprehensive privacy law but enforces strict breach notification rules under A.R.S. 18-552 with a 45-day deadline and up to $500,000 in penalties.
15 min read
Arkansas Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Arkansas protects biometric data under its breach notification law, not a dedicated statute. Learn what the Personal Information Protection Act requires in 2026.
8 min read
Arkansas Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Arkansas data breach notification rules under the Personal Information Protection Act, including reporting timelines, AG requirements, and penalties.
8 min read
Arkansas Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Learn about Arkansas data privacy laws including the Personal Information Protection Act, breach notification rules, student data protections, and your consumer rights.
14 min read
Australia Data Privacy Laws: Privacy Act, APPs & 2026 Reforms
Australia's Privacy Act 1988 (Cth), 13 Australian Privacy Principles, OAIC enforcement, the new statutory tort (June 2025), NDB scheme, and 2024-2026 reform timeline — verified May 2026.
20 min read
Australia's Notifiable Data Breaches Scheme Explained
Australia's Notifiable Data Breaches scheme under Part IIIC of the Privacy Act 1988: the serious harm test, the 30-day assessment and OAIC notification.
7 min read
Austria Data Privacy Laws: GDPR & DSG Guide (2026)
Austria enforces data privacy through the GDPR and DSG (Datenschutzgesetz). Learn about DSB enforcement, constitutional rights, AI Act rules, penalties, and breach rules.
25 min read
Bahrain Data Privacy Laws: PDPL Law No. 30 of 2018 Complete Guide (2026)
Bahrain PDPL (Law No. 30 of 2018): supervisory authority, 72-hour breach notification, Resolution 42/2022 adequacy list (83 countries), DPG sector mandates, penalties up to BD 40,000. Updated May 2026.
21 min read
Bangladesh Data Privacy Laws: The PDPO 2025 and Complete Legal Framework
Bangladesh enacted its first comprehensive data protection law, the Personal Data Protection Ordinance 2025. Learn about data subject rights, localization rules, the February 2026 amendment, penalties, and the May 2027 enforcement deadline.
19 min read
Belgium Data Privacy Laws: GDPR Implementation Guide (2026)
Belgium enforces data privacy through GDPR, the Law of 30 July 2018, and Article 22 of the Constitution. APD/GBA fines, AI Act (BIPT), breach rules, and 2025-2026 decisions.
25 min read
Bermuda Data Privacy Laws: PIPA Compliance Guide (2026)
Guide to Bermuda Personal Information Protection Act covering consent, data subject rights, Privacy Commissioner enforcement, and cross-border rules.
18 min read
Biometric Privacy Laws by State (2026): BIPA, CUBI & Consent
Biometric privacy laws by state. Which states have biometric data laws like Illinois BIPA, Texas CUBI, and Washington, plus consent rules and your rights.
6 min read
BIPA Compliance for Employers (2026): Step-by-Step
BIPA compliance for employers using fingerprint or face-scan timeclocks: the seven Section 15 steps, plus a free self-check tool. Avoid the most common violations.
2 min read
BIPA Damages: What a Violation Is Worth (2026)
BIPA damages explained: the $1,000 and $5,000 statutory amounts, why the 2024 amendment ended per-scan math, and what people actually receive in settlements.
3 min read
BIPA Explained: Illinois Biometric Privacy Act (740 ILCS 14)
BIPA, the Illinois Biometric Information Privacy Act (740 ILCS 14), explained: consent rules, the $1,000 to $5,000 penalties, key cases, and the 2024 amendment.
5 min read
BIPA Statute of Limitations: The 5-Year Deadline (2026)
The BIPA statute of limitations is five years for all claims, settled by Tims v. Black Horse Carriers (2023). How the deadline works and when the clock starts.
2 min read
Brazil Data Privacy Laws: LGPD Compliance Guide (2026)
Complete guide to Brazil's LGPD data privacy law. Covers the 10 legal bases, ANPD enforcement, penalties up to BRL 50M, EU adequacy decision, and compliance requirements.
19 min read
Bulgaria Data Privacy Laws: GDPR & PDPA Complete Guide (2026)
Bulgaria enforces GDPR through the ZZLD (amended Aug 2024), supervised by the CPDP. Covers EGN protection, NRA breach, EU AI Act, NIS2, Schengen SIS, and compliance steps.
22 min read
California Biometric Privacy Laws: Collection, Consent & Penalties (2026)
California protects biometric data as sensitive personal information under the CCPA/CPRA. Learn about consumer rights, breach rules, employer duties, and CPPA enforcement.
8 min read
California Data Breach Notification Laws: Reporting Rules & Timelines (2026)
California requires breach notification within 30 days under SB 446. Learn who must comply, what triggers notice, CCPA damages, and AG reporting rules.
9 min read
California Data Privacy Laws: CCPA, CPRA & Consumer Rights (2026)
Learn about California data privacy laws including CCPA, CPRA, consumer rights, business obligations, penalties up to $7,988 per violation, and the new 2026 DELETE Act rules.
15 min read
Canada Data Privacy Laws: PIPEDA & Provincial Guide (2026)
Complete guide to Canada data privacy laws including PIPEDA, Quebec Law 25, Alberta and BC PIPA. Covers penalties up to $25M, breach notification rules, and 2026 reform status.
29 min read
CCPA Compliance Checklist for Businesses (2026)
Step-by-step CCPA compliance checklist covering privacy policies, Do Not Sell links, data mapping, vendor contracts, employee training, and the 45-day response window.
11 min read
CCPA Opt-Out Rights: Do Not Sell or Share My Personal Information (2026)
California consumers can opt out of the sale and sharing of personal data under the CCPA. Learn about GPC signals, sensitive PI limits, link requirements, and enforcement.
10 min read
CCPA vs CPRA: Key Differences Explained (2026)
Compare the CCPA and CPRA side by side. Learn about new consumer rights, the CPPA enforcement agency, contractor rules, risk assessments, and opt-out preference signals.
9 min read
Chile Data Privacy Laws: Ley 21.719 Reform, New Agency, and December 2026 Entry into Force
Complete guide to Chile data privacy laws: Ley 21.719 (2024) replaces Ley 19.628, creates the Agencia de Protección de Datos Personales, GDPR-aligned rights, penalties up to 20,000 UTM, and enforcement from December 2026.
16 min read
China Data Privacy Laws: PIPL, CSL & DSL Compliance Guide (2026)
China's PIPL, amended Cybersecurity Law (Jan 2026), and Data Security Law form a strict data protection regime. Consent requirements, cross-border transfer rules, penalties up to CNY 10 million, compliance steps.
19 min read
Colombia Data Privacy Laws: Law 1581 and Habeas Data Guide (2026)
Colombia protects personal data through constitutional habeas data rights and Ley 1581 of 2012. Covers SIC enforcement, RNBD, cross-border transfers, Worldcoin shutdown, and 2025 reform bills.
19 min read
Colorado Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Colorado biometric privacy law HB24-1130 requires consent before collecting fingerprints, facial scans, and other biometric data. Learn employer rules, retention limits, and penalties.
9 min read
Colorado Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Colorado requires data breach notification within 30 days. Learn who must comply, what personal information is protected, AG reporting rules, and penalties.
8 min read
Colorado Data Privacy Laws: CPA Consumer Rights Guide (2026)
Colorado Privacy Act grants consumers rights to access, delete, and control personal data. Learn CPA thresholds, penalties, and breach rules.
21 min read
Colorado Privacy Act Compliance Checklist (2026)
Step-by-step Colorado Privacy Act compliance checklist: applicability thresholds, the nonprofit coverage trap, privacy notice, GPC Universal Opt-Out, sensitive data consent, data protection assessments, processor contracts, and AG enforcement.
15 min read
Colorado Privacy Act Consumer Rights & How to Use Them
Colorado residents have seven CPA rights: access, correct, delete, portability, and opt-out of targeted ads, data sales, and profiling. Learn how to submit requests, use GPC, appeal denials, and file an AG complaint.
15 min read
Connecticut Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Connecticut classifies biometric data as sensitive under the CTDPA, requiring opt-in consent before collection. AG-only enforcement with $5,000 per violation penalties.
11 min read
Connecticut Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Connecticut requires 60-day breach notification, 24-month credit monitoring for SSN breaches, and AG reporting. Learn the rules under Conn. Gen. Stat. 36a-701b.
10 min read
Connecticut Data Privacy Laws: CTDPA Consumer Rights Guide (2026)
Learn about Connecticut data privacy laws including the CTDPA, consumer rights, business obligations, penalties up to $5,000 per violation, and breach notification rules.
20 min read
Cookie Banner Requirements: US & EU Rules (2026)
Practical guide to cookie banner requirements in the US and EU covering what to include, design rules, and common compliance mistakes.
11 min read
Cookie Consent Laws by Country: Complete Guide (2026)
Country-by-country guide to cookie consent requirements: the EU ePrivacy + GDPR opt-in model, the UK DUAA 2025 changes, the US state-law patchwork, and 30+ other jurisdictions including Brazil, China, India, and Australia.
16 min read
Costa Rica Data Privacy Laws: Ley 8968 and PRODHAB Compliance Guide (2026)
Costa Rica data privacy law explained: Ley 8968, PRODHAB authority, constitutional basis, consent, data subject rights, database registration, cross-border transfers, penalties, and 2026 reform status.
18 min read
Croatia Data Privacy Laws: GDPR, AZOP Enforcement & Compliance Guide (2026)
Croatia enforces GDPR through the Act on Implementation (NN 42/2018) and AZOP, which imposed nearly EUR 7M in fines during 2025. Learn constitutional basis, OIB protections, cross-border transfer rules, EU AI Act overlay, and compliance steps.
18 min read
CTDPA Compliance Checklist for Businesses (2026)
Step-by-step CTDPA compliance checklist: applicability thresholds, privacy notice requirements, sensitive data opt-in consent, universal opt-out signals, data protection assessments, processor contracts, and AG enforcement rules for Connecticut businesses.
17 min read
CTDPA Consumer Rights: Exercise Your Connecticut Privacy Rights
Connecticut residents have five CTDPA rights: access, correct, delete, portability, and opt-out. Learn step-by-step how to submit requests, use GPC, appeal denials, and file a complaint with the CT AG.
10 min read
Cyprus Data Privacy Laws: GDPR, Law 125(I)/2018 and OCPDP Guide (2026)
Cyprus data privacy law explained: GDPR + Law 125(I)/2018, OCPDP enforcement, constitutional basis, DPO rules, cross-border transfers, EU AI Act, and 2024-2026 fines.
24 min read
Czech Republic Data Privacy Laws: GDPR, Act 110/2019 & ÚOOÚ Guide (2026)
Czech Republic data privacy laws explained: GDPR + Act No. 110/2019 Coll., the ÚOOÚ supervisory authority, the EUR 13.9M Avast fine, public body exemptions, EU AI Act overlay, and 2024–2026 developments.
19 min read
Data Localization Laws by Country (2026)
Country-by-country guide to data localization and residency requirements: China CSL 2026 update, Russia, India DPDP Rules, Vietnam, Indonesia, Nigeria NDPA 2023, Saudi Arabia, Kazakhstan, EU, and more.
17 min read
Data Protection Officer Requirements by Country (2026)
Complete guide to DPO requirements worldwide. Covers GDPR Articles 37-39 triggers, EDPB guidelines, and DPO-equivalent rules in Brazil, China, Singapore, Malaysia, India, South Korea, UAE, and more.
22 min read
Data Retention Laws by Country (2026): GDPR, CJEU and Global Rules
Data retention law has two meanings: the GDPR storage-limitation principle (keep no longer than necessary) and mandatory telecom metadata laws. Compare rules across 14 countries including CJEU case law through 2024.
19 min read
Delaware Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Delaware's Personal Data Privacy Act protects biometric data like fingerprints and iris scans, including consent rules, penalties, and employer obligations.
9 min read
Delaware Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Delaware requires data breach notification within 60 days. Learn who must comply, what data triggers reporting, AG notice rules, and encryption safe harbor.
9 min read
Delaware Data Privacy Laws: DPDPA Consumer Rights Guide (2026)
Learn about the Delaware Personal Data Privacy Act (DPDPA), its low 35,000-consumer threshold, consumer rights, sensitive data protections, and enforcement penalties up to $10,000.
16 min read
Denmark Data Privacy Laws: GDPR, Datatilsynet & AI Act Guide (2026)
Denmark enforces GDPR through courts, not direct DPA fines. Learn how Datatilsynet works, the Danish Data Protection Act, EU AI Act Law 467/2025, CPR numbers, and compliance requirements.
20 min read
District of Columbia Biometric Privacy Laws: Collection, Consent & Penalties (2026)
DC protects biometric data through its breach notification law (DC Code 28-3851). Learn what triggers notification, penalties, and how DC compares to states with stronger biometric laws.
7 min read
District of Columbia Data Breach Notification Laws: Reporting Rules & Timelines (2026)
DC requires breach notification without unreasonable delay and AG notice when 50+ residents are affected. Learn about the private right of action, 18-month identity theft protection, and penalties.
10 min read
District of Columbia Data Privacy Laws: Breach Rules & Consumer Rights (2026)
DC has no comprehensive privacy law yet. D.C. Code §§ 28-3851 to 28-3853 require breach notification; the AG enforces via CPPA. Federal overlay includes the TAKE IT DOWN Act (FTC enforcement live May 2026).
17 min read
Do You Have a BIPA Claim? Check Your Eligibility (2026)
Do you have a BIPA claim? Use our free checker. You may qualify if a private company in Illinois scanned your fingerprint or face without written consent.
2 min read
Does GDPR Apply to US Companies? Article 3 Explained (2026)
GDPR applies to US companies that target or monitor people in the EU under Article 3(2). Learn the scope test, EU representative rule, and how to comply.
21 min read
DPDPA Compliance Checklist: Delaware Privacy
Delaware DPDPA compliance steps (Del. Code tit. 6, ch. 12D): 35,000-consumer test, notice, opt-in sensitive data, GPC by Jan 1, 2026, $10,000 penalties.
8 min read
DPDPA Consumer Rights: Delaware Data Privacy
Delaware DPDPA rights (Del. Code tit. 6, § 12D-104): access, delete, opt out, third-party list, 45-day response, and a Jan 1, 2026 universal opt-out.
7 min read
Ecuador Data Privacy Laws: LOPDP Compliance Guide (2026)
Complete guide to Ecuador's Ley Orgánica de Protección de Datos Personales (LOPDP): constitutional basis, SPDP authority, first sanctions (Dec 2025), DPO requirements, cross-border transfers, and business compliance.
15 min read
Egypt Data Privacy Laws: PDPL Law 151/2020 and the 2025 Executive Regulations
Egypt's Personal Data Protection Law No. 151 of 2020 and Ministerial Decree 816/2025 (Executive Regulations): licensing regime, PDPC authority, data subject rights, cross-border transfers, penalties, and the October 2026 compliance deadline.
16 min read
Employee Data Privacy: Employer Obligations by State (2026)
State-by-state guide to employee data privacy. Covers workplace monitoring, biometrics, social media passwords, GPS tracking, and CCPA employee rights.
9 min read
Estonia Data Privacy Laws: GDPR, PDPA, and AKI Enforcement (2026)
Estonia enforces data privacy through the EU GDPR and the Personal Data Protection Act (2019). Learn about AKI enforcement, the EUR 3 million Apotheka fine, constitutional rights, e-Estonia context, and business compliance obligations.
20 min read
EU Adequacy Decisions: Full Country List and 2026 Updates
Complete guide to EU adequacy decisions under GDPR Article 45: all 17 adequate countries, the UK December 2025 renewal, the Brazil 2026 decision, the January 2024 review of 11 pre-GDPR decisions, and DPF litigation risks.
16 min read
EU AI Act and Data Privacy: GDPR Intersection Explained
EU AI Act bans social scoring, facial scraping, and workplace emotion recognition since Feb 2025. Layers onto GDPR, demands FRIAs, and carries EUR 35M fines.
15 min read
EU Cookie Law (ePrivacy Directive) Explained (2026)
Complete guide to the EU ePrivacy Directive cookie law: consent requirements, the strictly-necessary exemption, how it interacts with GDPR, the withdrawn ePrivacy Regulation, and the November 2025 Digital Omnibus cookie proposals.
15 min read
EU Data Privacy Laws: GDPR, AI Act & the 2025-2026 Digital Reforms
Complete guide to EU data privacy law: the GDPR framework across 27 member states, the EU AI Act phased timeline, the ePrivacy Directive, the withdrawn ePrivacy Regulation, the 2025 GDPR Procedural Regulation, the November 2025 Digital Omnibus proposal, and the wider digital rulebook.
14 min read
EU-US Data Privacy Framework: Complete Guide (2026)
Complete guide to the EU-US Data Privacy Framework: history, self-certification, the Data Protection Review Court, the Latombe case (dismissed September 2025, appealed to CJEU as C-703/25 P), PCLOB disruption, and what happens if the DPF falls.
13 min read
FDBR Compliance Checklist: Florida Data Privacy
FDBR compliance under Fla. Stat. 501.701 et seq.: the $1B controller test, privacy notice, opt-in sensitive data, opt-outs, and $50,000 penalties.
7 min read
FDBR Consumer Rights: Florida Data Privacy Rights
Florida Digital Bill of Rights (Fla. Stat. 501.705): access, delete, port, opt out of sale, and opt out of voice and facial recognition collection.
6 min read
Finland Data Privacy Laws: GDPR, Finnish Data Protection Act & Enforcement (2026)
Finland data privacy guide: GDPR, Data Protection Act 1050/2018, workplace privacy, Act 1377/2025 AI supervision, DPO enforcement, 2024-2026 fines, and compliance tips.
18 min read
Florida Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Florida biometric privacy law covers fingerprints, voiceprints, and iris scans under the FDBR. Learn opt-out rights, penalties, and the $1B threshold.
9 min read
Florida Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Florida's 30-day data breach notification deadline, penalty structure up to $500,000, AG reporting rules, and encryption safe harbor under Fla. Stat. 501.171.
9 min read
Florida Data Privacy Laws: Digital Bill of Rights & Breach Rules (2026)
Florida data privacy laws include the Digital Bill of Rights targeting Big Tech and FIPA breach notification rules. Learn FDBR thresholds, consumer rights, and penalties.
17 min read
France Data Privacy Laws: GDPR & CNIL Compliance Guide (2026)
France enforces data privacy through GDPR and the Loi Informatique et Libertés. Learn about CNIL fines, cookie rules, breach notification, AI Act, and penalties.
18 min read
GDPR Compliance Checklist 2026: Step-by-Step Guide
Step-by-step GDPR compliance checklist: data mapping, lawful bases, privacy notices, DPIAs, breach procedures, DPO, AI Act obligations, and the November 2025 Digital Omnibus changes.
21 min read
GDPR Consent Requirements: What Counts as Valid Consent (2026)
What valid consent means under GDPR: the four elements of Article 4(11), Article 7 conditions, explicit consent for special-category data, children consent, cookie rules, consent-or-pay models, and 2025 enforcement.
16 min read
GDPR Data Breach Notification: 72-Hour Rule Explained (2026)
Complete guide to GDPR Articles 33 and 34 breach notification: the 72-hour rule, what counts as a personal data breach, processor duties, EDPB Guidelines 9/2022, enforcement cases, and how the clock starts.
16 min read
GDPR Data Processing Agreement (DPA): Article 28 Explained (2026)
GDPR Article 28 requires a written DPA with every processor. Learn the 8 mandatory clauses, sub-processor rules, and consequences of non-compliance.
17 min read
GDPR Data Subject Rights Explained: All Eight Rights (2026)
The eight GDPR data subject rights under Chapter III: access, rectification, erasure, restriction, portability, objection, automated-decision rights, and the right to be informed. Timelines, exemptions, and 2026 enforcement.
18 min read
GDPR DPIA: When Is a Data Protection Impact Assessment Required? (2026)
GDPR Article 35 requires a DPIA before high-risk processing. Learn when it is mandatory, what it must contain, and when to consult your supervisory authority.
18 min read
GDPR DPO Requirements: Do You Need a Data Protection Officer? (2026)
GDPR Articles 37-39 explained: the 3 mandatory DPO triggers, tasks, independence rules, conflict-of-interest bar, and fines for non-compliance.
15 min read
GDPR Fines and Penalties: Complete Guide (2026)
GDPR fines explained: the two-tier Article 83 structure, EDPB fine-calculation methodology, the Deutsche Wohnen corporate-liability ruling, every major fine and its current appeal status, non-monetary consequences, and how to reduce your exposure.
16 min read
GDPR for Small Businesses: Compliance Guide for SMEs (2026)
Practical GDPR compliance guide for small businesses: what applies, the Article 30(5) records derogation, when you need a DPO, the 2025 Digital Omnibus simplification proposal, sector examples, and low-cost steps.
17 min read
GDPR International Data Transfers: SCCs & Adequacy (2026)
GDPR Chapter V bars EU data transfers abroad without a valid mechanism. Learn adequacy, SCCs, BCRs, derogations, and Schrems II in plain English.
25 min read
GDPR Right to Be Forgotten: Article 17 Erasure (2026)
GDPR Article 17 gives you the right to demand erasure of personal data in 6 grounds. Learn the exceptions, Google Spain ruling, and how to make a request.
25 min read
GDPR Subject Access Requests (DSAR): How to Respond (2026)
Learn how to respond to a GDPR DSAR under Article 15: the one-month deadline, what data to provide, fees, refusals, and a step-by-step response workflow.
15 min read
GDPR vs CCPA: Key Differences Explained (2026)
Side-by-side comparison of GDPR and CCPA/CPRA: scope, consent models, consumer rights, sensitive data, penalties, CPPA enforcement, and the 2025 ADMT/cybersecurity regulations.
16 min read
GDPR vs LGPD: EU vs Brazil Privacy Law Comparison (2026)
Side-by-side comparison of the EU GDPR and Brazil's LGPD: legal bases (6 vs 10), penalties, data subject rights, the ANPD vs EU DPAs, breach notification, and the January 2026 mutual adequacy decision.
16 min read
GDPR vs PIPL: EU and China Data Privacy Laws Compared (2026)
Side-by-side comparison of GDPR and China's PIPL: scope, legal bases, individual rights, penalties, cross-border transfers, and 2025-2026 regulatory updates.
21 min read
GDPR vs UK GDPR: How the Data (Use and Access) Act 2025 Is Creating Real Divergence
The EU GDPR and UK GDPR started identical after Brexit. The Data (Use and Access) Act 2025—in force February 2026—has introduced recognised legitimate interests, new ADM rules, SAR stop-the-clock, and cookie exemptions. The EU renewed UK adequacy through December 2031.
16 min read
Georgia Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Georgia has no biometric privacy law. Learn what the Personal Identity Protection Act covers, how SB 111 could change protections, and what rights you have in 2026.
6 min read
Georgia Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Georgia's data breach notification law requires notice without unreasonable delay but sets no deadline, no AG reporting, and no penalties. Full breakdown of Ga. Code 10-1-912.
9 min read
Georgia Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Georgia data privacy laws explained: breach notification under O.C.G.A. 10-1-912, Computer Systems Protection Act, failed consumer privacy bills, and federal protections.
14 min read
Germany Data Privacy Laws: GDPR, BDSG & Enforcement Guide (2026)
Germany enforces the EU GDPR through the BDSG, 17 supervisory authorities, and a constitutional right to informational self-determination. Full guide to compliance, DPO rules, employee data, AI Act overlay, and enforcement.
20 min read
Ghana Data Privacy Laws: Data Protection Act 2012 (Act 843) Complete Guide (2026)
Complete guide to Ghana data privacy laws: Data Protection Act 2012 (Act 843), the Data Protection Commission, mandatory registration, data subject rights, cross-border transfer rules, penalties, and the pending Data Protection Bill 2025 that would modernize the framework.
16 min read
Greece Data Privacy Laws: GDPR, Law 4624/2019 & HDPA Guide (2026)
Greece data privacy laws explained: GDPR implementation via Law 4624/2019, Hellenic Data Protection Authority enforcement, Clearview AI fine, Predatorgate, EU AI Act, cookies, and compliance tips.
21 min read
Hawaii Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Hawaii covers biometric data through its breach notification law (HRS Ch. 487N) and constitutional privacy rights. Learn what fingerprint, voiceprint, and iris data protections apply.
9 min read
Hawaii Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Hawaii requires breach notification without unreasonable delay under HRS 487N. Learn about penalties up to $2,500, private right of action, and what triggers notice.
6 min read
Hawaii Data Privacy Laws: Constitutional Privacy & Consumer Rights (2026)
Guide to Hawaii data privacy laws including constitutional privacy rights, data breach notification under HRS 487N, SSN protections, and 2026 legislative updates.
13 min read
Hong Kong Data Privacy Laws: Complete PDPO Compliance Guide (2026)
Complete guide to Hong Kong's Personal Data (Privacy) Ordinance (PDPO, Cap. 486): six Data Protection Principles, 2021 anti-doxxing regime, breach handling, cross-border transfer rules, AI guidance, and 2026 reform proposals.
22 min read
How to Complain to the ICO About a Data Breach
How to complain to the UK ICO about a data breach: raise it with the organisation first, ICO timescales and powers, and why compensation comes from court.
7 min read
How to File a Data Privacy Complaint (2026)
Step-by-step guide to filing a data privacy complaint in 2026: California CPPA and AG, state AGs for VCDPA/CPA/CTDPA/TDPSA, the FTC, HHS OCR for HIPAA (180-day deadline), and EU/GDPR supervisory authorities.
14 min read
How to Make a Privacy Complaint to the OAIC
How to make a privacy complaint to the OAIC in Australia: complain to the organisation first, lodge with the OAIC, conciliation, and s 52 compensation.
7 min read
How to Make a UK Subject Access Request (SAR)
How to make a UK subject access request: how to ask, the one-month deadline, the free-of-charge rule, exemptions, refusals, and complaining to the ICO.
7 min read
How to Opt Out of Data Brokers (2026)
Step-by-step guide to opting out of data brokers in 2026: use California's DROP platform, enable Global Privacy Control, check CA, VT, OR, and TX registries, and submit per-broker CCPA requests.
13 min read
How to Submit a Data Deletion Request (2026)
Step-by-step guide to submitting a data deletion request under CCPA, US state privacy laws, and GDPR:including timelines, identity verification, authorized agents, exceptions, and how to escalate if a company refuses.
13 min read
Hungary Data Privacy Laws: GDPR, NAIH Enforcement & Compliance Guide (2026)
Hungary data privacy law explained: GDPR + Info Act CXII of 2011, NAIH enforcement, AI Act overlay, cross-border transfers, DPO rules, penalties up to EUR 20 million.
19 min read
ICDPA Compliance Checklist for Businesses (Iowa)
A practical Iowa Code 715D compliance checklist: thresholds, privacy notice, sale opt-out, processor contracts, the 90-day cure, and $7,500 penalties.
7 min read
ICDPA Consumer Rights: What Iowans Can and Cannot Do
Under Iowa Code 715D.3, Iowans can access, delete, port, and opt out of data sales. There is no right to correct, targeted-ad opt-out, or profiling opt-out.
7 min read
Iceland Data Privacy Laws: GDPR via EEA, Act No. 90/2018, and Persónuvernd (2026 Guide)
Iceland applies the GDPR through the EEA Agreement and Act No. 90/2018. Learn how Persónuvernd enforces data protection, what fines apply, and how businesses must comply.
17 min read
Idaho Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Idaho has no dedicated biometric privacy law as of 2026. Learn what current statutes cover, pending legislation like H0744, and how Idaho compares to other states.
7 min read
Idaho Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Idaho data breach notification rules, the 24-hour agency reporting deadline, protected data categories, encryption safe harbor, and penalties up to $25,000.
9 min read
Idaho Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Idaho data privacy laws explained: breach notification rules under Idaho Code 28-51-105, identity theft penalties, student data protections, and federal privacy coverage.
14 min read
Illinois Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Illinois BIPA (740 ILCS 14) requires written consent before collecting fingerprints, face scans, or other biometrics. Violations carry $1,000-$5,000 in damages per violation.
9 min read
Illinois Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Illinois data breach notification rules under 815 ILCS 530, including reporting timelines, AG notification thresholds, encryption safe harbor, and penalties.
9 min read
Illinois Data Privacy Laws: BIPA, Consumer Rights & Penalties (2026)
Illinois leads the nation in biometric privacy through BIPA, with penalties up to $5,000 per violation. Learn about BIPA settlements, data breach rules, and employee protections.
19 min read
INCDPA Compliance Checklist for Indiana Businesses
An INCDPA compliance checklist: IC 24-15 thresholds, privacy notice, opt-in sensitive data, 45-day requests, assessments, and the permanent 30-day cure before Jan. 1, 2026.
7 min read
INCDPA Consumer Rights: Indiana Data Privacy Rights
Indiana's INCDPA (IC 24-15-3-1) gives residents access, correction, deletion, portability, and opt-out rights starting Jan. 1, 2026, with a 45-day response window.
7 min read
India Data Privacy Laws: DPDP Act 2023 and DPDP Rules 2025 Complete Guide
India's Digital Personal Data Protection Act 2023 and the DPDP Rules notified November 2025 form the country's first comprehensive data protection regime. This guide covers consent, Data Principal rights, the Data Protection Board, penalties up to INR 250 crore, cross-border transfers, and the phased compliance timeline to May 2027.
17 min read
Indiana Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Indiana's ICDPA classifies biometric data as sensitive, requiring opt-in consent for fingerprints, voiceprints, and iris scans. Learn consent rules, penalties, and exemptions.
8 min read
Indiana Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Indiana requires data breach notification within 45 days. Learn who must be notified, what personal information triggers the law, penalties up to $150,000, and the biometric data gap.
10 min read
Indiana Data Privacy Laws: ICDPA Consumer Rights Guide (2026)
Learn about Indiana data privacy laws including the ICDPA consumer rights, business obligations, enforcement penalties, and data breach notification requirements.
16 min read
Indonesia Data Privacy Laws: Complete UU PDP Compliance Guide (2026)
Indonesia's Personal Data Protection Law (UU PDP, Law 27/2022) is fully in force since October 2024. Guide covers supervisory authority status, data subject rights, breach notification, cross-border transfers, criminal and administrative penalties, and compliance steps.
17 min read
Iowa Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Iowa classifies biometric data as sensitive under the ICDPA (effective Jan 2025). Learn about opt-out requirements, breach notification rules, and penalties.
8 min read
Iowa Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Iowa requires breach notification in the most expedient time possible under Code 715C. Learn about biometric data coverage, AG reporting rules, and penalties.
8 min read
Iowa Data Privacy Laws: ICDPA Consumer Rights Guide (2026)
Iowa's ICDPA grants consumers access, deletion, portability, and opt-out rights under Iowa Code Ch. 715D. Learn thresholds, the 90-day cure period, penalties up to $7,500, and breach notification rules.
21 min read
Ireland Data Privacy Laws: GDPR, DPC Enforcement & Your Rights (2026)
Ireland's DPC enforces GDPR for Meta, Google, TikTok and more. Learn about the Data Protection Act 2018, record fines exceeding 4 billion euros, AI Act obligations, cross-border transfer rules, and your rights.
22 min read
Israel Data Privacy Laws: Complete Guide to the PPL and Amendment 13 (2026)
Complete guide to Israel data privacy laws. Covers the Protection of Privacy Law 1981, Amendment 13 (effective August 14, 2025), PPA enforcement, EU adequacy renewal, DPO requirements, and compliance.
19 min read
Italy Data Privacy Laws: GDPR, Privacy Code & Garante Guide (2026)
Italy enforces data privacy through the GDPR, the Privacy Code (D.Lgs. 196/2003), and the Garante. Covers Law 132/2025 AI law, criminal penalties, Enel EUR 79M fine, and 2025-2026 enforcement.
22 min read
Jamaica Data Privacy Laws: Data Protection Act 2020 Complete Guide (2026)
Complete guide to Jamaica's Data Protection Act 2020 -- the OIC, eight data protection standards, phased commencement, registration, data subject rights, breach notification, cross-border transfers, and penalties.
18 min read
Japan Data Privacy Laws: Complete APPI Guide (2026)
Japan's APPI governs personal data with mandatory breach reporting, cross-border transfer rules, and EU mutual adequacy. The January 2026 PPC reform policy introduces administrative fines for the first time, with implementation expected by 2028.
19 min read
Kansas Biometric Privacy Laws: What You Need to Know (2026)
Kansas has no dedicated biometric privacy law. Learn what limited protections exist for fingerprint and facial recognition data under current Kansas statutes.
7 min read
Kansas Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Kansas requires businesses to investigate breaches and notify residents without unreasonable delay under K.S.A. 50-7a01. Learn about PI definitions, safe harbors, and penalties.
10 min read
Kansas Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Kansas data privacy laws explained. Covers breach notification under K.S.A. 50-7a01, consumer protections, student data privacy, identity theft penalties, and your rights.
14 min read
KCDPA Compliance Checklist: Kentucky Privacy Law
KCDPA compliance (KRS 367.3611 to 367.3629): coverage, privacy notice, opt-in sensitive data, 45-day requests, assessments, processor contracts, 30-day cure.
6 min read
KCDPA Consumer Rights: Kentucky Privacy Rights Guide
Under the KCDPA (KRS 367.3615), Kentuckians can access, correct, delete, port, and opt out of data sales; controllers must respond within 45 days.
6 min read
Kentucky Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Kentucky's KCDPA classifies biometric data as sensitive, requiring opt-in consent. Covers definitions, consumer rights, exemptions, and AG enforcement.
8 min read
Kentucky Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Kentucky data breach notification requirements under KRS 365.732 and government rules under KRS 61.931-934, including timing, encryption safe harbor, and penalties.
9 min read
Kentucky Data Privacy Laws: Consumer Rights Guide (2026)
Kentucky Consumer Data Protection Act took effect Jan. 1, 2026. Learn about consumer rights, business obligations, and penalties up to $7,500 per violation.
18 min read
Kenya Data Privacy Laws: DPA 2019, ODPC Enforcement, and 2026 Compliance Guide
Kenya enforces data privacy through the Data Protection Act 2019 and the ODPC. Learn about the registration regime, data subject rights, 72-hour breach notification, cross-border transfer rules, and ODPC enforcement actions including KES 26M+ in fines through 2024.
17 min read
Latvia Data Privacy Laws: GDPR, DVI Enforcement & Compliance Guide (2026)
Latvia data privacy laws explained: GDPR + Personal Data Processing Law, DVI enforcement (EUR 1.2M TET fine upheld 2024, EUR 300K ZZ Dats fine 2025), EU AI Act overlay, criminal penalties, and compliance steps.
20 min read
Liechtenstein Data Privacy Laws: GDPR via EEA, DSG & Datenschutzstelle (2026)
Complete guide to Liechtenstein data protection: GDPR via EEA, the 2018 Data Protection Act (DSG), Datenschutzstelle enforcement, DPO rules, financial sector compliance, blockchain, AI Act, and 2024–2026 updates.
18 min read
Lithuania Data Privacy Laws: GDPR, VDAI Enforcement & Compliance Guide (2026)
Lithuania implements GDPR through its 2018 Law on Legal Protection of Personal Data. Learn about the VDAI, the EUR 2.4M Vinted fine, constitutional basis, data subject rights, DPO requirements, cross-border transfers, the EU AI Act overlay, and 2024-2025 enforcement trends.
17 min read
Louisiana Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Louisiana has no standalone biometric privacy law but protects biometric data through breach notification rules. Learn the 60-day notice requirements and penalties.
8 min read
Louisiana Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Louisiana requires data breach notification within 60 days. Learn who must report, what data is protected, AG reporting rules, and penalties under La. R.S. 51:3071.
8 min read
Louisiana Data Privacy Laws: Comprehensive Guide (2026)
Louisiana passed the Data Privacy Act (SB 386) in 2026, effective Jan. 1, 2027. Learn breach notification rules, children's online protections, and federal privacy laws that apply now.
16 min read
Luxembourg Data Privacy Laws: GDPR, CNPD & the Amazon Fine (2026)
Luxembourg data privacy laws explained: GDPR implementation, Law of 1 August 2018, CNPD enforcement powers, the EUR 746M Amazon fine and its annulment on appeal, EU AI Act, financial sector rules, and 2024-2026 developments.
24 min read
Maine Biometric Privacy Laws: Facial Recognition Ban & Pending Protections (2026)
Maine bans government facial recognition and may soon protect biometric data under LD 1822. Learn what laws exist today and what is pending for 2026.
9 min read
Maine Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Maine requires data breach notification within 30 days. Learn who must comply, what triggers notification, encryption safe harbors, and penalties under state law.
11 min read
Maine Data Privacy Laws: ISP Privacy & Consumer Rights (2026)
Complete guide to Maine data privacy laws including the ISP privacy law (35-A MRSA 9301), breach notification requirements, the pending Consumer Data Privacy Act, and employee monitoring rules.
15 min read
Malaysia Data Privacy Laws: PDPA 2010 Compliance Guide (2026)
Malaysia enforces data privacy through the PDPA 2010 (Act 709) and its 2024 amendments. Learn about JPDP enforcement, 7 data protection principles, breach notification, and penalties up to RM 1 million.
20 min read
Malta Data Privacy Laws: Cap. 586 and GDPR Guide (2026)
Malta data privacy laws: GDPR, Cap. 586, and IDPC enforcement. Covers the age-13 digital consent rule, iGaming sector compliance, EU AI Act designation, and cross-border transfer rules.
17 min read
Maryland Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Maryland's MODPA protects biometric data like fingerprints and retina scans. Covers the strict necessity standard, sale ban, breach rules, and AG enforcement.
9 min read
Maryland Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Maryland requires data breach notification within 45 days. Learn about AG-first reporting, protected personal information, encryption safe harbors, and penalties.
10 min read
Maryland Data Privacy Laws: MODPA Consumer Rights Guide (2026)
Maryland Online Data Privacy Act (MODPA) bans selling sensitive data, limits collection to what is necessary, and protects minors under 18.
20 min read
Massachusetts Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Massachusetts has no standalone biometric privacy law, but 201 CMR 17.00, Chapter 93A treble damages, and the pending Data Privacy Act (S.2608) protect biometric data.
9 min read
Massachusetts Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Massachusetts data breach notification rules under Chapter 93H and 201 CMR 17.00, including WISP requirements, penalties, and credit monitoring obligations.
11 min read
Massachusetts Data Privacy Laws: Security Rules & Consumer Rights (2026)
Massachusetts data privacy laws include 201 CMR 17.00 security regulations, Chapter 93H breach notification rules, and pending comprehensive privacy legislation.
15 min read
MCDPA Compliance Checklist: Montana Privacy (2026)
MCDPA compliance (Mont. Code Ann. 30-14-2803): applicability at 25,000/15,000 thresholds, notice, opt-in, assessments. Cure period ended April 1, 2026.
10 min read
MCDPA Consumer Rights: Montana Privacy Rights (2026)
Montana's MCDPA (Mont. Code Ann. 30-14-2808) gives access, correction, deletion, portability, and opt-out rights, with a 45-day response window.
9 min read
Mexico Data Privacy Laws: 2025 LFPDPPP Complete Guide
Mexico replaced its 2010 data privacy law in March 2025. New LFPDPPP, INAI dissolved, SABG enforces. ARCO rights, penalties up to MXN 37.5M, AI provisions explained.
19 min read
MHMDA Business Compliance (Washington)
Washington MHMDA duties (ch. 19.373 RCW): separate privacy policy, consent, authorization to sell, geofencing ban, security, plus private-suit litigation risk.
9 min read
MHMDA Consumer Rights (Washington)
Washington MHMDA (RCW 19.373.040) gives consumers rights to access, withdraw consent, and delete health data, plus a private right of action via the CPA.
7 min read
Michigan Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Michigan protects biometric data through its Identity Theft Protection Act and Consumer Protection Act. Learn current rules, breach penalties, and pending 2026 legislation.
10 min read
Michigan Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Michigan data breach notification law requires businesses to notify residents of security breaches involving personal information. Learn timelines, penalties, and safe harbors under MCL 445.72.
9 min read
Michigan Data Privacy Laws: Consumer Rights & Protections (2026)
Michigan data privacy laws explained: breach notification rules, SSN protections, proposed Personal Data Privacy Act, and your rights under state and federal law.
16 min read
Minnesota Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Minnesota's MCDPA classifies biometric data as sensitive, requiring opt-in consent. Covers definitions, consumer rights, exemptions, and AG enforcement with $7,500 penalties.
9 min read
Minnesota Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Minnesota requires breach notification without unreasonable delay when names plus SSNs, driver's licenses, or financial accounts are exposed. No AG notice required.
9 min read
Minnesota Data Privacy Laws: Consumer Rights Guide (2026)
Learn about Minnesota data privacy laws including the Consumer Data Privacy Act, breach notification rules, consumer rights, and penalties for violations.
21 min read
Minnesota MCDPA Compliance Checklist (Minn. Stat. 325M)
A Minnesota MCDPA compliance checklist: thresholds, the required data inventory under 325M.18, sensitive-data opt-in, and profiling-answer duties.
5 min read
Minnesota MCDPA Consumer Rights (Minn. Stat. 325M.14)
Minnesota MCDPA consumer rights under Minn. Stat. 325M.14: access, delete, opt out, a third-party list, and a unique right to question profiling.
6 min read
Mississippi Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Mississippi has no biometric privacy law. Learn how Miss. Code 75-24-29 falls short, failed BIPA-style bills, employer rules, and federal protections that apply.
8 min read
Mississippi Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Mississippi data breach notification law (Miss. Code 75-24-29) requires notice without unreasonable delay. No AG reporting required. Learn triggers, exemptions, and penalties.
10 min read
Mississippi Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Mississippi requires data breach notification under Miss. Code 75-24-29 but has no comprehensive consumer privacy law. Learn breach rules, penalties, and your rights.
12 min read
Missouri Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Missouri has no biometric privacy law and excludes biometric data from breach notification rules. Learn current protections, pending legislation, and employer obligations.
8 min read
Missouri Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Missouri data breach notification law (Mo. Rev. Stat. 407.1500) requires prompt notice to affected residents. Learn timelines, penalties up to $150K, and AG enforcement rules.
9 min read
Missouri Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Missouri has no comprehensive consumer privacy law but enforces data breach notification under Mo. Rev. Stat. 407.1500. Learn about breach notification, identity theft protections, and consumer rights.
20 min read
MODPA Compliance Checklist: Maryland Privacy
Maryland MODPA compliance: strict-necessity data minimization (Com. Law 14-4607), sensitive-data sale ban, UOOM, assessments, and penalties to $10,000.
7 min read
MODPA Consumer Rights: Maryland Data Privacy
Maryland's MODPA (Com. Law 14-4605) grants access, deletion, opt-out, and a 45-day response, plus the strictest sensitive-data and minimization protections in the US.
7 min read
Montana Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Montana MCDPA classifies biometric data as sensitive, requiring opt-in consent. AG-only enforcement with penalties up to $7,500 per violation. No private right of action.
10 min read
Montana Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Montana requires data breach notification without unreasonable delay under Mont. Code 30-14-1704. Learn who must be notified, protected data types, AG reporting rules, and penalties.
8 min read
Montana Data Privacy Laws: MCDPA Consumer Rights Guide (2026)
Montana Consumer Data Privacy Act (MCDPA) explained. Learn your rights to access, delete, and opt out of data sales under Mont. Code Ann. 30-14-2801, plus breach notification rules.
17 min read
Morocco Data Privacy Laws: Law 09-08, CNDP & Compliance Guide (2026)
Morocco data protection under Law 09-08: CNDP registration rules, constitutional basis, legal bases, data subject rights, cross-border transfers, penalties, and 2025-2026 developments.
21 min read
NDPA Compliance Checklist: Nebraska Privacy (2026)
Nebraska NDPA compliance (Neb. Rev. Stat. 87-1103): the SBA small-business test, opt-in sensitive data, assessments, plus a permanent 30-day cure period.
10 min read
NDPA Consumer Rights: Nebraska Data Privacy (2026)
Nebraska's NDPA (Neb. Rev. Stat. 87-1107) gives five rights: access, correct, delete, port, and opt out, with a 45-day response window and a 60-day appeal.
9 min read
Nebraska Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Nebraska biometric privacy laws require opt-in consent under the NDPA. Learn about definitions, penalties up to $7,500 per violation, exemptions, and breach notification rules.
8 min read
Nebraska Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Nebraska requires data breach notification without unreasonable delay under Neb. Rev. Stat. 87-801. Learn about broad PI coverage including biometrics, AG notification, and the cybersecurity safe harbor.
8 min read
Nebraska Data Privacy Laws: Consumer Rights Guide (2026)
Nebraska Data Privacy Act (LB 1074) took effect January 1, 2025. Learn consumer rights, business obligations, penalties up to $7,500, and data breach notification rules.
19 min read
Netherlands Data Privacy Laws: GDPR, UAVG & AP Guide (2026)
Complete guide to Netherlands data privacy laws: GDPR, UAVG, Autoriteit Persoonsgegevens enforcement, Clearview AI EUR 30.5M fine, EU AI Act, breach rules, DPO requirements, and 2024-2026 developments.
23 min read
Nevada Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Nevada lacks a standalone biometric privacy law but protects health-related biometric data under NRS 603A. Learn about consent rules, sale bans, and enforcement.
9 min read