AI and Data Privacy: Legal Requirements (2026)
How AI intersects with data privacy law. Covers the EU AI Act, Colorado SB 205, CCPA automated decisions, FTC enforcement, and state laws.
11 min read
Loading...
Data Privacy Laws
261 articles
Alabama Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Alabama has no standalone biometric privacy law. Learn how the Data Breach Notification Act protects biometric data, penalties up to $500K, and employer obligations.
8 min read
Alabama Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Alabama's data breach notification rules under the 2018 Act, including the 45-day deadline, AG reporting requirements, penalties, and exemptions.
9 min read
Alabama Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Complete guide to Alabama data privacy laws including the Data Breach Notification Act of 2018, security requirements, penalties, and the pending Personal Data Protection Act.
12 min read
Alaska Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Alaska has no biometric privacy law despite multiple legislative attempts. Learn what protections exist, gaps in coverage, and pending bills as of 2026.
8 min read
Alaska Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Alaska requires breach notification without unreasonable delay. One of ~12 states with a private right of action for actual damages up to $500.
9 min read
Alaska Data Privacy Laws: Constitutional Privacy & Breach Rules (2026)
Alaska data privacy laws explained. Learn about constitutional privacy rights, breach notification under AS 45.48, biometric protections, and SSN safeguards.
12 min read
Argentina Data Privacy Laws: PDPL Compliance Guide (2026)
Argentina's Personal Data Protection Law (Law 25.326) governs data privacy with EU adequacy status. Learn about AAIP enforcement, habeas data rights, consent rules, and pending reform.
12 min read
Arizona Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Arizona has no standalone biometric privacy law. Learn how ARS 18-551/552 protects biometric data in breaches, penalties up to $500K, and pending legislation.
8 min read
Arizona Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Arizona requires data breach notification within 45 days under A.R.S. §§ 18-551 and 18-552. Learn who must report, what triggers notice, and penalties up to $500,000.
9 min read
Arizona Data Privacy Laws: Breach Rules & Consumer Rights (2026)
Arizona has no comprehensive privacy law but enforces strict breach notification rules under A.R.S. 18-552 with a 45-day deadline and up to $500,000 in penalties.
12 min read
Arkansas Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Arkansas protects biometric data under its breach notification law, not a dedicated statute. Learn what the Personal Information Protection Act requires in 2026.
8 min read
Arkansas Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Arkansas data breach notification rules under the Personal Information Protection Act, including reporting timelines, AG requirements, and penalties.
8 min read
Arkansas Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Learn about Arkansas data privacy laws including the Personal Information Protection Act, breach notification rules, student data protections, and your consumer rights.
16 min read
Australia Data Privacy Laws: Privacy Act & APPs Guide (2026)
Guide to Australia's Privacy Act 1988, 13 Australian Privacy Principles, OAIC enforcement, data breach rules, and 2024-2026 reform timeline.
14 min read
Austria Data Privacy Laws: GDPR & DSG Guide (2026)
Austria enforces data privacy through the GDPR and DSG (Datenschutzgesetz). Learn about DSB enforcement, the Google Analytics ruling, penalties, and breach rules.
12 min read
Bahrain Data Privacy Laws: PDPL Law 30/2018 Guide (2026)
Complete guide to Bahrain data privacy laws under the PDPL (Law No. 30 of 2018). Learn about the Personal Data Protection Authority, penalties, cross-border transfers, and compliance.
10 min read
Bangladesh Data Privacy Laws: Current Framework & Reforms (2026)
Understand Bangladesh data privacy laws including the Personal Data Protection Ordinance 2025, Cyber Security Ordinance 2025, constitutional privacy rights, and telecom regulations.
12 min read
Belgium Data Privacy Laws: GDPR Implementation Guide (2026)
Belgium enforces data privacy through GDPR and the Law of 30 July 2018. Learn about APD/GBA enforcement, fines up to 4% of turnover, and Belgian-specific rules.
12 min read
Bermuda Data Privacy Laws: PIPA Compliance Guide (2026)
Guide to Bermuda Personal Information Protection Act covering consent, data subject rights, Privacy Commissioner enforcement, and cross-border rules.
11 min read
Brazil Data Privacy Laws: LGPD Compliance Guide (2026)
Complete guide to Brazil's LGPD data privacy law. Covers the 10 legal bases, ANPD enforcement, penalties up to BRL 50M, EU adequacy decision, and compliance requirements.
17 min read
Bulgaria Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Bulgaria implements GDPR through the Personal Data Protection Act, CPDP enforcement, the EUR 2.55M NRA data breach fine, EGN protections, and compliance tips.
10 min read
California Biometric Privacy Laws: Collection, Consent & Penalties (2026)
California protects biometric data as sensitive personal information under the CCPA/CPRA. Learn about consumer rights, breach rules, employer duties, and CPPA enforcement.
8 min read
California Data Breach Notification Laws: Reporting Rules & Timelines (2026)
California requires breach notification within 30 days under SB 446. Learn who must comply, what triggers notice, CCPA damages, and AG reporting rules.
9 min read
California Data Privacy Laws: CCPA, CPRA & Consumer Rights (2026)
Learn about California data privacy laws including CCPA, CPRA, consumer rights, business obligations, penalties up to $7,988 per violation, and the new 2026 DELETE Act rules.
14 min read
Canada Data Privacy Laws: PIPEDA & Provincial Guide (2026)
Complete guide to Canada data privacy laws including PIPEDA, Quebec Law 25, Alberta and BC PIPA. Covers penalties up to $25M, breach notification rules, and 2026 reform status.
12 min read
CCPA Compliance Checklist for Businesses (2026)
Step-by-step CCPA compliance checklist covering privacy policies, Do Not Sell links, data mapping, vendor contracts, employee training, and the 45-day response window.
13 min read
CCPA Opt-Out Rights: Do Not Sell or Share My Personal Information (2026)
California consumers can opt out of the sale and sharing of personal data under the CCPA. Learn about GPC signals, sensitive PI limits, link requirements, and enforcement.
12 min read
CCPA vs CPRA: Key Differences Explained (2026)
Compare the CCPA and CPRA side by side. Learn about new consumer rights, the CPPA enforcement agency, contractor rules, risk assessments, and opt-out preference signals.
12 min read
Chile Data Privacy Laws: Law 21.719 Data Protection Reform Guide (2026)
Complete guide to Chile data privacy laws under Law 21.719 reforming Law 19.628. Learn about the new Data Protection Agency, GDPR-aligned provisions, and penalties.
11 min read
China Data Privacy Laws: PIPL Compliance Guide (2026)
China's PIPL, Data Security Law, and Cybersecurity Law form strict data privacy rules. Learn consent requirements, cross-border transfer rules, penalties up to 5% revenue, and compliance steps.
14 min read
Colombia Data Privacy Laws: Law 1581 Compliance Guide (2026)
Colombia protects personal data under Law 1581 of 2012 and the habeas data constitutional right. Learn about SIC enforcement, consent rules, penalties, and cross-border transfers.
12 min read
Colorado Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Colorado biometric privacy law HB24-1130 requires consent before collecting fingerprints, facial scans, and other biometric data. Learn employer rules, retention limits, and penalties.
9 min read
Colorado Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Colorado requires data breach notification within 30 days. Learn who must comply, what personal information is protected, AG reporting rules, and penalties.
8 min read
Colorado Data Privacy Laws: CPA Consumer Rights Guide (2026)
Colorado Privacy Act grants consumers rights to access, delete, and control personal data. Learn CPA thresholds, penalties, and breach rules.
12 min read
Connecticut Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Connecticut classifies biometric data as sensitive under the CTDPA, requiring opt-in consent before collection. AG-only enforcement with $5,000 per violation penalties.
11 min read
Connecticut Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Connecticut requires 60-day breach notification, 24-month credit monitoring for SSN breaches, and AG reporting. Learn the rules under Conn. Gen. Stat. 36a-701b.
10 min read
Connecticut Data Privacy Laws: CTDPA Consumer Rights Guide (2026)
Learn about Connecticut data privacy laws including the CTDPA, consumer rights, business obligations, penalties up to $5,000 per violation, and breach notification rules.
12 min read
Cookie Banner Requirements: US & EU Rules (2026)
Practical guide to cookie banner requirements in the US and EU covering what to include, design rules, and common compliance mistakes.
11 min read
Cookie Consent Laws by Country: Complete Guide (2026)
Country-by-country guide to cookie consent requirements covering the EU, US, UK, Brazil, China, and 20+ other jurisdictions.
10 min read
Costa Rica Data Privacy Laws: Law 8968 Compliance Guide (2026)
Guide to Costa Rica data protection law covering consent requirements, data subject rights, cross-border transfers, and PRODHAB enforcement.
10 min read
Croatia Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Croatia implements GDPR, AZOP enforcement with nearly EUR 7M in 2025 fines, OIB number protections, video surveillance rules, and compliance requirements.
10 min read
Cyprus Data Privacy Laws: Law 125(I)/2018 and GDPR Guide (2026)
Complete guide to Cyprus data privacy laws under Law 125(I)/2018 and the GDPR. Learn about the Commissioner's enforcement powers, fines, data subject rights, and compliance.
10 min read
Czech Republic Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how the Czech Republic implements GDPR through Act 110/2019, UOOU enforcement including the EUR 13.9M Avast fine, public body exemptions, and compliance tips.
10 min read
Data Localization Laws by Country (2026)
Country-by-country guide to data localization and residency requirements covering which nations require local data storage and processing.
11 min read
Data Protection Officer (DPO) Requirements by Country (2026)
Compare DPO requirements across 12+ countries. Covers GDPR Articles 37-39, mandatory triggers, qualifications, independence rules, and penalties.
11 min read
Data Retention Laws by Country (2026)
Compare data retention laws across 10+ countries. Covers GDPR storage limitation, sector-specific periods for health, finance, and telecom, plus destruction rules.
11 min read
Delaware Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Delaware's Personal Data Privacy Act protects biometric data like fingerprints and iris scans, including consent rules, penalties, and employer obligations.
9 min read
Delaware Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Delaware requires data breach notification within 60 days. Learn who must comply, what data triggers reporting, AG notice rules, and encryption safe harbor.
8 min read
Delaware Data Privacy Laws: DPDPA Consumer Rights Guide (2026)
Learn about the Delaware Personal Data Privacy Act (DPDPA), its low 35,000-consumer threshold, consumer rights, sensitive data protections, and enforcement penalties up to $10,000.
12 min read
Denmark Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Denmark implements GDPR through the Danish Data Protection Act, Datatilsynet enforcement via courts, CPR number protections, CCTV rules, and compliance tips.
10 min read
District of Columbia Biometric Privacy Laws: Collection, Consent & Penalties (2026)
DC protects biometric data through its breach notification law (DC Code 28-3851). Learn what triggers notification, penalties, and how DC compares to states with stronger biometric laws.
7 min read
District of Columbia Data Breach Notification Laws: Reporting Rules & Timelines (2026)
DC requires breach notification without unreasonable delay and AG notice when 50+ residents are affected. Learn about the private right of action, 18-month identity theft protection, and penalties.
11 min read
District of Columbia Data Privacy Laws: Breach Rules & Consumer Rights (2026)
District of Columbia data privacy laws require breach notification under D.C. Code 28-3851 to 28-3853, reasonable security safeguards, and student digital privacy protections.
14 min read
Ecuador Data Privacy Laws: LOPDP Compliance Guide (2026)
Guide to Ecuador Organic Law on Personal Data Protection covering consent, data subject rights, DPO requirements, and cross-border transfers.
11 min read
Egypt Data Privacy Laws: Law No. 151 of 2020 Guide (2026)
Complete guide to Egypt data privacy laws under Law No. 151 of 2020. Learn about the Personal Data Protection Center, licensing requirements, penalties, and 2025 regulations.
11 min read
Employee Data Privacy: Employer Obligations by State (2026)
State-by-state guide to employee data privacy. Covers workplace monitoring, biometrics, social media passwords, GPS tracking, and CCPA employee rights.
11 min read
Estonia Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Estonia implements GDPR through the Personal Data Protection Act, the AKI enforcement authority, e-Residency data obligations, and X-Road secure data exchange.
12 min read
EU Adequacy Decisions: Which Countries Qualify (2026)
Complete list of EU adequacy decisions covering which countries have adequate data protection, pending decisions, and what adequacy means for transfers.
11 min read
EU Cookie Law (ePrivacy Directive) Explained (2026)
Complete guide to the EU ePrivacy Directive cookie rules including consent requirements, exemptions, and how it works alongside GDPR.
11 min read
EU Data Privacy Laws: Complete GDPR Guide and Compliance (2026)
Complete guide to EU GDPR data privacy laws. Covers the 7 principles, data subject rights, penalties up to 4% of global turnover, enforcement stats, and compliance requirements.
12 min read
EU-US Data Privacy Framework: Complete Guide (2026)
Complete guide to the EU-US Data Privacy Framework covering certification, obligations, redress mechanisms, and how it replaces Privacy Shield.
11 min read
Finland Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Finland implements GDPR through the Data Protection Act 1050/2018, the Data Protection Ombudsman, strict employee monitoring rules, and compliance tips.
11 min read
Florida Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Florida biometric privacy law covers fingerprints, voiceprints, and iris scans under the FDBR. Learn opt-out rights, penalties, and the $1B threshold.
9 min read
Florida Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Florida's 30-day data breach notification deadline, penalty structure up to $500,000, AG reporting rules, and encryption safe harbor under Fla. Stat. 501.171.
9 min read
Florida Data Privacy Laws: Digital Bill of Rights & Breach Rules (2026)
Florida data privacy laws include the Digital Bill of Rights targeting Big Tech and FIPA breach notification rules. Learn FDBR thresholds, consumer rights, and penalties.
12 min read
France Data Privacy Laws: GDPR & CNIL Compliance Guide (2026)
France enforces data privacy through GDPR and the Loi Informatique et Libertes. Learn about CNIL fines, cookie rules, breach notification, and penalties.
14 min read
GDPR Compliance Checklist for Businesses (2026)
Step-by-step GDPR compliance checklist covering data mapping, legal bases, privacy notices, DPIAs, breach procedures, and documentation requirements.
13 min read
GDPR Consent Requirements: What Counts as Valid Consent (2026)
Learn what qualifies as valid consent under GDPR including freely given, specific, informed, and unambiguous requirements with practical examples.
13 min read
GDPR Data Breach Notification: 72-Hour Rule Explained (2026)
Guide to GDPR Article 33 breach notification requirements including the 72-hour reporting deadline, what to report, and penalty examples.
12 min read
GDPR Data Subject Rights: Access, Erasure & Portability (2026)
Guide to all GDPR data subject rights including access, rectification, erasure, portability, restriction, and the right to object.
13 min read
GDPR Fines & Penalties: Complete List and Guide (2026)
Complete guide to GDPR fines and penalties including calculation methodology, notable enforcement actions, and how to reduce compliance risk.
12 min read
GDPR for Small Businesses: Simplified Compliance Guide (2026)
Practical GDPR compliance guide for small businesses covering what applies to you, exemptions, low-cost compliance steps, and common mistakes.
13 min read
GDPR vs CCPA: Key Differences Explained (2026)
Side-by-side comparison of GDPR and CCPA covering scope, consumer rights, consent models, penalties, and compliance requirements.
11 min read
GDPR vs LGPD: EU vs Brazil Privacy Law Comparison (2026)
Comprehensive comparison of GDPR and Brazil LGPD covering legal bases, data subject rights, DPO requirements, and cross-border transfers.
10 min read
GDPR vs PIPL: EU vs China Data Protection Comparison (2026)
Side-by-side comparison of GDPR and China PIPL covering scope, consent, cross-border transfers, and government access provisions.
11 min read
GDPR vs UK GDPR: What Changed After Brexit (2026)
Comparison of EU GDPR and UK GDPR covering divergences since Brexit, adequacy decisions, enforcement differences, and dual compliance.
11 min read
Georgia Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Georgia has no biometric privacy law. Learn what the Personal Identity Protection Act covers, how SB 111 could change protections, and what rights you have in 2026.
6 min read
Georgia Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Georgia's data breach notification law requires notice without unreasonable delay but sets no deadline, no AG reporting, and no penalties. Full breakdown of Ga. Code 10-1-912.
9 min read
Georgia Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Georgia data privacy laws explained: breach notification under O.C.G.A. 10-1-912, Computer Systems Protection Act, failed consumer privacy bills, and federal protections.
14 min read
Germany Data Privacy Laws: GDPR & BDSG Compliance Guide (2026)
Germany enforces some of the strictest data privacy laws in Europe through the GDPR and BDSG. Learn about the BfDI, state DPAs, employee data rules, penalties, and compliance requirements.
17 min read
Ghana Data Privacy Laws: Data Protection Act 2012 (Act 843) Guide (2026)
Complete guide to Ghana data privacy laws under the Data Protection Act 2012 (Act 843). Learn about the Data Protection Commission, registration requirements, and penalties.
11 min read
Greece Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Greece implements GDPR through Law 4624/2019, HDPA enforcement on CCTV and surveillance, video monitoring rules, fines, and compliance requirements.
10 min read
Hawaii Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Hawaii covers biometric data through its breach notification law (HRS Ch. 487N) and constitutional privacy rights. Learn what fingerprint, voiceprint, and iris data protections apply.
9 min read
Hawaii Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Hawaii requires breach notification without unreasonable delay under HRS 487N. Learn about penalties up to $2,500, private right of action, and what triggers notice.
8 min read
Hawaii Data Privacy Laws: Constitutional Privacy & Consumer Rights (2026)
Guide to Hawaii data privacy laws including constitutional privacy rights, data breach notification under HRS 487N, SSN protections, and 2026 legislative updates.
12 min read
Hong Kong Data Privacy Laws: PDPO Compliance Guide (2026)
Complete guide to Hong Kong Personal Data Privacy Ordinance covering the six data protection principles, cross-border transfers, and enforcement.
11 min read
Hungary Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Hungary implements GDPR through the Info Act, NAIH enforcement including the landmark AI fine, strict employee monitoring rules, and compliance requirements.
11 min read
Iceland Data Privacy Laws: Act 90/2018 and GDPR via EEA Guide (2026)
Complete guide to Iceland data privacy laws under Act 90/2018 and the GDPR. Learn about Personuvernd enforcement, fines, data subject rights, and compliance requirements.
11 min read
Idaho Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Idaho has no dedicated biometric privacy law as of 2026. Learn what current statutes cover, pending legislation like H0744, and how Idaho compares to other states.
8 min read
Idaho Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Idaho data breach notification rules, the 24-hour agency reporting deadline, protected data categories, encryption safe harbor, and penalties up to $25,000.
9 min read
Idaho Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Idaho data privacy laws explained: breach notification rules under Idaho Code 28-51-105, identity theft penalties, student data protections, and federal privacy coverage.
12 min read
Illinois Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Illinois BIPA (740 ILCS 14) requires written consent before collecting fingerprints, face scans, or other biometrics. Violations carry $1,000-$5,000 in damages per violation.
9 min read
Illinois Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Illinois data breach notification rules under 815 ILCS 530, including reporting timelines, AG notification thresholds, encryption safe harbor, and penalties.
9 min read
Illinois Data Privacy Laws: BIPA, Consumer Rights & Penalties (2026)
Illinois leads the nation in biometric privacy through BIPA, with penalties up to $5,000 per violation. Learn about BIPA settlements, data breach rules, and employee protections.
14 min read
India Data Privacy Laws: DPDP Act Compliance Guide (2026)
India's DPDP Act 2023 is the country's first comprehensive data protection law. Learn about consent rules, penalties up to INR 250 crore, cross-border transfers, and the phased compliance timeline through 2027.
12 min read
Indiana Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Indiana's ICDPA classifies biometric data as sensitive, requiring opt-in consent for fingerprints, voiceprints, and iris scans. Learn consent rules, penalties, and exemptions.
8 min read
Indiana Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Indiana requires data breach notification within 45 days. Learn who must be notified, what personal information triggers the law, penalties up to $150,000, and the biometric data gap.
10 min read
Indiana Data Privacy Laws: ICDPA Consumer Rights Guide (2026)
Learn about Indiana data privacy laws including the ICDPA consumer rights, business obligations, enforcement penalties, and data breach notification requirements.
12 min read
Indonesia Data Privacy Laws: PDP Law Compliance Guide (2026)
Complete guide to Indonesia's PDP Law (Law 27/2022). Covers data subject rights, breach notification, cross-border transfers, penalties up to 2% revenue, and DPO requirements.
12 min read
Iowa Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Iowa classifies biometric data as sensitive under the ICDPA (effective Jan 2025). Learn about opt-out requirements, breach notification rules, and penalties.
8 min read
Iowa Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Iowa requires breach notification in the most expedient time possible under Code 715C. Learn about biometric data coverage, AG reporting rules, and penalties.
8 min read
Iowa Data Privacy Laws: ICDPA Consumer Rights Guide (2026)
Iowa's ICDPA grants consumers access, deletion, portability, and opt-out rights under Iowa Code Ch. 715D. Learn thresholds, the 90-day cure period, penalties up to $7,500, and breach notification rules.
14 min read
Ireland Data Privacy Laws: GDPR & DPC Enforcement Guide (2026)
Ireland's DPC enforces GDPR for Meta, Google, Apple, and TikTok. Learn about the Data Protection Act 2018, record fines totaling over 4 billion euros, and your rights.
14 min read
Israel Data Privacy Laws: Privacy Protection Law Guide (2026)
Complete guide to Israel data privacy laws. Covers the Privacy Protection Law 5741-1981, Amendment 13 reforms, PPA enforcement, EU adequacy, and compliance requirements.
12 min read
Italy Data Privacy Laws: GDPR & Privacy Code Guide (2026)
Italy enforces data privacy through the GDPR and Privacy Code (D.Lgs. 196/2003). Learn about Garante enforcement, breach rules, criminal penalties, and landmark AI cases.
17 min read
Jamaica Data Privacy Laws: Data Protection Act Guide (2026)
Guide to Jamaica Data Protection Act covering the Information Commissioner, consent requirements, data subject rights, and enforcement.
11 min read
Japan Data Privacy Laws: APPI Compliance Guide (2026)
Japan's APPI governs personal data with strict cross-border transfer rules, mandatory breach reporting, and expanded individual rights. 2026 guide.
14 min read
Kansas Biometric Privacy Laws: What You Need to Know (2026)
Kansas has no dedicated biometric privacy law. Learn what limited protections exist for fingerprint and facial recognition data under current Kansas statutes.
7 min read
Kansas Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Kansas requires businesses to investigate breaches and notify residents without unreasonable delay under K.S.A. 50-7a01. Learn about PI definitions, safe harbors, and penalties.
10 min read
Kansas Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Kansas data privacy laws explained. Covers breach notification under K.S.A. 50-7a01, consumer protections, student data privacy, identity theft penalties, and your rights.
12 min read
Kentucky Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Kentucky's KCDPA classifies biometric data as sensitive, requiring opt-in consent. Covers definitions, consumer rights, exemptions, and AG enforcement.
8 min read
Kentucky Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Kentucky data breach notification requirements under KRS 365.732 and government rules under KRS 61.931-934, including timing, encryption safe harbor, and penalties.
11 min read
Kentucky Data Privacy Laws: Consumer Rights Guide (2026)
Kentucky Consumer Data Protection Act took effect Jan. 1, 2026. Learn about consumer rights, business obligations, and penalties up to $7,500 per violation.
12 min read
Kenya Data Privacy Laws: DPA 2019 Compliance Guide (2026)
Kenya enforces data privacy through the Data Protection Act 2019 and the ODPC. Learn about data subject rights, breach notification, penalties up to KES 5M, and cross-border transfer rules.
12 min read
Latvia Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Latvia implements GDPR through the Personal Data Processing Law, DVI enforcement authority, notable fines up to EUR 1.2M, and criminal penalties.
12 min read
Liechtenstein Data Privacy Laws: GDPR via EEA Guide (2026)
Guide to Liechtenstein data protection covering GDPR application via EEA membership, the Data Protection Act, and DSS enforcement.
11 min read
Lithuania Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Lithuania implements GDPR, VDAI enforcement including the EUR 2.4M Vinted fine, data breach trends, dual supervisory structure, and compliance requirements.
10 min read
Louisiana Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Louisiana has no standalone biometric privacy law but protects biometric data through breach notification rules. Learn the 60-day notice requirements and penalties.
8 min read
Louisiana Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Louisiana requires data breach notification within 60 days. Learn who must report, what data is protected, AG reporting rules, and penalties under La. R.S. 51:3071.
8 min read
Louisiana Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Guide to Louisiana data privacy laws including breach notification requirements, 60-day timeline, penalties up to $5,000 per violation, and federal privacy protections.
12 min read
Luxembourg Data Privacy Laws: GDPR & CNPD Guide (2026)
Learn about Luxembourg data privacy laws including GDPR implementation, the Law of 1 August 2018, CNPD enforcement, the record EUR 746M Amazon fine, and financial sector rules.
12 min read
Maine Biometric Privacy Laws: Facial Recognition Ban & Pending Protections (2026)
Maine bans government facial recognition and may soon protect biometric data under LD 1822. Learn what laws exist today and what is pending for 2026.
9 min read
Maine Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Maine requires data breach notification within 30 days. Learn who must comply, what triggers notification, encryption safe harbors, and penalties under state law.
12 min read
Maine Data Privacy Laws: ISP Privacy & Consumer Rights (2026)
Complete guide to Maine data privacy laws including the ISP privacy law (35-A MRSA 9301), breach notification requirements, the pending Consumer Data Privacy Act, and employee monitoring rules.
14 min read
Malaysia Data Privacy Laws: PDPA 2010 Compliance Guide (2026)
Malaysia enforces data privacy through the PDPA 2010 (Act 709) and its 2024 amendments. Learn about JPDP enforcement, 7 data protection principles, breach notification, and penalties up to RM 1 million.
14 min read
Malta Data Privacy Laws: Cap. 586 and GDPR Guide (2026)
Complete guide to Malta data privacy laws under Cap. 586 and the GDPR. Learn about IDPC enforcement, data subject rights, cross-border transfers, and penalties.
11 min read
Maryland Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Maryland's MODPA protects biometric data like fingerprints and retina scans. Covers the strict necessity standard, sale ban, breach rules, and AG enforcement.
9 min read
Maryland Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Maryland requires data breach notification within 45 days. Learn about AG-first reporting, protected personal information, encryption safe harbors, and penalties.
10 min read
Maryland Data Privacy Laws: MODPA Consumer Rights Guide (2026)
Maryland Online Data Privacy Act (MODPA) bans selling sensitive data, limits collection to what is necessary, and protects minors under 18.
12 min read
Massachusetts Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Massachusetts has no standalone biometric privacy law, but 201 CMR 17.00, Chapter 93A treble damages, and the pending Data Privacy Act (S.2608) protect biometric data.
9 min read
Massachusetts Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Learn Massachusetts data breach notification rules under Chapter 93H and 201 CMR 17.00, including WISP requirements, penalties, and credit monitoring obligations.
9 min read
Massachusetts Data Privacy Laws: Security Rules & Consumer Rights (2026)
Massachusetts data privacy laws include 201 CMR 17.00 security regulations, Chapter 93H breach notification rules, and pending comprehensive privacy legislation.
17 min read
Mexico Data Privacy Laws: LFPDPPP Compliance Guide (2026)
Mexico overhauled its data privacy framework in 2025. Learn about the LFPDPPP, ARCO rights, INAI dissolution, penalties up to $3.8M USD, and compliance requirements.
12 min read
Michigan Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Michigan protects biometric data through its Identity Theft Protection Act and Consumer Protection Act. Learn current rules, breach penalties, and pending 2026 legislation.
10 min read
Michigan Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Michigan data breach notification law requires businesses to notify residents of security breaches involving personal information. Learn timelines, penalties, and safe harbors under MCL 445.72.
11 min read
Michigan Data Privacy Laws: Consumer Rights & Protections (2026)
Michigan data privacy laws explained: breach notification rules, SSN protections, proposed Personal Data Privacy Act, and your rights under state and federal law.
14 min read
Minnesota Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Learn how Minnesota's MCDPA classifies biometric data as sensitive, requiring opt-in consent. Covers definitions, consumer rights, exemptions, and AG enforcement with $7,500 penalties.
9 min read
Minnesota Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Minnesota requires breach notification without unreasonable delay when names plus SSNs, driver's licenses, or financial accounts are exposed. No AG notice required.
9 min read
Minnesota Data Privacy Laws: Consumer Rights Guide (2026)
Learn about Minnesota data privacy laws including the Consumer Data Privacy Act, breach notification rules, consumer rights, and penalties for violations.
12 min read
Mississippi Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Mississippi has no biometric privacy law. Learn how Miss. Code 75-24-29 falls short, failed BIPA-style bills, employer rules, and federal protections that apply.
8 min read
Mississippi Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Mississippi data breach notification law (Miss. Code 75-24-29) requires notice without unreasonable delay. No AG reporting required. Learn triggers, exemptions, and penalties.
8 min read
Mississippi Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Mississippi requires data breach notification under Miss. Code 75-24-29 but has no comprehensive consumer privacy law. Learn breach rules, penalties, and your rights.
12 min read
Missouri Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Missouri has no biometric privacy law and excludes biometric data from breach notification rules. Learn current protections, pending legislation, and employer obligations.
8 min read
Missouri Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Missouri data breach notification law (Mo. Rev. Stat. 407.1500) requires prompt notice to affected residents. Learn timelines, penalties up to $150K, and AG enforcement rules.
9 min read
Missouri Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Missouri has no comprehensive consumer privacy law but enforces data breach notification under Mo. Rev. Stat. 407.1500. Learn about breach notification, identity theft protections, and consumer rights.
14 min read
Montana Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Montana MCDPA classifies biometric data as sensitive, requiring opt-in consent. AG-only enforcement with penalties up to $7,500 per violation. No private right of action.
10 min read
Montana Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Montana requires data breach notification without unreasonable delay under Mont. Code 30-14-1704. Learn who must be notified, protected data types, AG reporting rules, and penalties.
7 min read
Montana Data Privacy Laws: MCDPA Consumer Rights Guide (2026)
Montana Consumer Data Privacy Act (MCDPA) explained. Learn your rights to access, delete, and opt out of data sales under Mont. Code Ann. 30-14-2801, plus breach notification rules.
12 min read
Morocco Data Privacy Laws: Law 09-08 Compliance Guide (2026)
Guide to Morocco data protection law covering CNDP registration, consent requirements, cross-border transfers, and enforcement penalties.
11 min read
Nebraska Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Nebraska biometric privacy laws require opt-in consent under the NDPA. Learn about definitions, penalties up to $7,500 per violation, exemptions, and breach notification rules.
8 min read
Nebraska Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Nebraska requires data breach notification without unreasonable delay under Neb. Rev. Stat. 87-801. Learn about broad PI coverage including biometrics, AG notification, and the cybersecurity safe harbor.
8 min read
Nebraska Data Privacy Laws: Consumer Rights Guide (2026)
Nebraska Data Privacy Act (LB 1074) took effect January 1, 2025. Learn consumer rights, business obligations, penalties up to $7,500, and data breach notification rules.
12 min read
Netherlands Data Privacy Laws: GDPR & UAVG Guide (2026)
Complete guide to Netherlands data privacy laws. Covers GDPR, UAVG, Autoriteit Persoonsgegevens enforcement, BSN protections, breach rules, and major fines.
17 min read
Nevada Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Nevada lacks a standalone biometric privacy law but protects health-related biometric data under NRS 603A. Learn about consent rules, sale bans, and enforcement.
9 min read
Nevada Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Nevada requires data breach notification without unreasonable delay under NRS 603A. Learn about protected data types, PCI DSS mandate, no AG notification requirement, and the encryption safe harbor.
8 min read
Nevada Data Privacy Laws: SB 220 & Consumer Rights Guide (2026)
Complete guide to Nevada data privacy laws including SB 220 opt-out rights, NRS 603A breach notification rules, consumer health data protections, and enforcement penalties.
12 min read
New Hampshire Biometric Privacy Laws: Collection, Consent & Penalties (2026)
New Hampshire classifies biometric data as sensitive under RSA 507-H (effective Jan 2025). Learn about consent rules, penalties up to $10,000, and the Data Privacy Unit.
10 min read
New Hampshire Data Breach Notification Laws: Reporting Rules & Timelines (2026)
New Hampshire requires data breach notification as quickly as possible under RSA 359-C:20. Learn about AG pre-notification, the $5,000 substitute notice threshold, CRA reporting, and penalties.
8 min read
New Hampshire Data Privacy Laws: Consumer Rights Guide (2026)
Learn about New Hampshire data privacy laws including the NH Privacy Act (RSA 507-H), consumer rights, business obligations, penalties up to $10,000 per violation, and breach notification rules.
14 min read
New Jersey Biometric Privacy Laws: Collection, Consent & Penalties (2026)
New Jersey biometric privacy law under the NJDPA requires consent before collecting fingerprints, facial geometry, or voiceprints. Learn the rules, penalties, and your rights.
9 min read
New Jersey Data Breach Notification Laws: Reporting Rules & Timelines (2026)
New Jersey requires data breach notification within 30 days, with a unique 7-day rule for social media breaches. Learn about treble damages, AG and State Police reporting, and penalties up to $20K.
9 min read
New Jersey Data Privacy Laws: NJDPA Consumer Rights Guide (2026)
Learn about New Jersey data privacy laws including the NJDPA, consumer rights, sensitive data protections, breach notification rules, and AG enforcement penalties.
12 min read
New Mexico Biometric Privacy Laws: Collection, Consent & Penalties (2026)
New Mexico protects biometric data through its Data Breach Notification Act, requiring 45-day notification and AG reporting. No standalone biometric privacy law exists.
8 min read
New Mexico Data Breach Notification Laws: Reporting Rules & Timelines (2026)
New Mexico requires data breach notification within 45 days of discovery under N.M. Stat. 57-12C. Learn about biometric data coverage, AG reporting, HIPAA/GLBA exemptions, and enforcement.
8 min read
New Mexico Data Privacy Laws: Breach Notification & Consumer Rights (2026)
New Mexico requires 45-day data breach notification under NMSA 57-12C. Learn about biometric data protections, disposal rules, AG enforcement penalties, and pending privacy bills.
14 min read
New York Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Guide to New York biometric privacy laws including the SHIELD Act, NYC Local Law 3, pending Biometric Privacy Act (S1422), and employer obligations for 2026.
11 min read
New York Data Breach Notification Laws: Reporting Rules & Timelines (2026)
New York requires data breach notification within 30 days under the SHIELD Act. Learn who must be notified, safeguard requirements, and penalties up to $250K.
11 min read
New York Data Privacy Laws: SHIELD Act & Consumer Rights (2026)
Guide to New York data privacy laws including the SHIELD Act, breach notification rules, biometric protections, employee monitoring law, and pending NY Privacy Act.
12 min read
New Zealand Data Privacy Laws: Privacy Act 2020 Guide (2026)
Complete guide to New Zealand data privacy laws under the Privacy Act 2020, covering all 13 Information Privacy Principles, breach notification, penalties, and cross-border transfers.
14 min read
Nigeria Data Privacy Laws: NDPA Compliance Guide (2026)
Complete guide to Nigeria data privacy laws under the NDPA 2023. Covers NDPC enforcement, data subject rights, breach notification, penalties up to 2% revenue, and cross-border transfer rules.
12 min read
North Carolina Biometric Privacy Laws: Collection, Consent & Penalties (2026)
North Carolina protects biometric data through breach notification laws with treble damages. Learn about NC fingerprint laws, employer rules, and pending privacy legislation.
10 min read
North Carolina Data Breach Notification Laws: Reporting Rules & Timelines (2026)
North Carolina requires breach notification without unreasonable delay. Violations are UDTP offenses with treble damages and a private right of action under N.C. Gen. Stat. 75-65.
9 min read
North Carolina Data Privacy Laws: Consumer Rights & Protections (2026)
Learn about North Carolina data privacy laws including the Identity Theft Protection Act, breach notification requirements, SSN protections, and proposed legislation.
17 min read
North Dakota Biometric Privacy Laws: Collection, Consent & Penalties (2026)
North Dakota has no standalone biometric privacy law. Learn how the state's identity theft statute, breach notification law, and insurance regulations address biometric data.
8 min read
North Dakota Data Breach Notification Laws: Reporting Rules & Timelines (2026)
North Dakota requires breach notification without unreasonable delay and AG notice at 250+ affected individuals. Penalties up to $5,000 per violation under N.D. Cent. Code 51-30.
8 min read
North Dakota Data Privacy Laws: Breach Notification & Consumer Rights (2026)
North Dakota data privacy laws include breach notification under NDCC 51-30, credit freeze rights under NDCC 51-33, identity theft protections, and HB 1127 financial data security rules.
15 min read
Norway Data Privacy Laws: Personal Data Act and GDPR via EEA Guide (2026)
Complete guide to Norway data privacy laws under the Personal Data Act and GDPR via EEA. Learn about Datatilsynet enforcement, fines, data subject rights, and compliance.
11 min read
Ohio Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Ohio has no biometric privacy law. Learn how the Ohio Data Protection Act safe harbor, breach notification rules, and insurance regulations affect biometric data.
9 min read
Ohio Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Ohio requires data breach notification within 45 days. Escalating penalties reach $10,000/day. The Ohio Data Protection Act offers a cybersecurity safe harbor under ORC 1349.19.
9 min read
Ohio Data Privacy Laws: Safe Harbor & Consumer Rights (2026)
Guide to Ohio data privacy laws including the Data Protection Act safe harbor, breach notification requirements under ORC 1349.19, and consumer protections.
12 min read
Oklahoma Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Oklahoma protects biometric data through its amended breach notification law (SB 626) and the Consumer Data Privacy Act (SB 546). No standalone biometric law exists.
9 min read
Oklahoma Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Oklahoma requires breach notification without unreasonable delay. SB 626 (effective Jan 2026) adds biometric data, 60-day AG deadline, and $150K penalty cap.
8 min read
Oklahoma Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Oklahoma data privacy laws explained: breach notification rules under 24 O.S. 161-166, Computer Crimes Act penalties, and pending SB 546 comprehensive privacy law.
12 min read
Oregon Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Oregon biometric privacy laws under the OCPA require opt-in consent for biometric data. Portland bans facial recognition in public spaces with $1,000/day penalties.
12 min read
Oregon Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Oregon requires data breach notification within 45 days. AG notice at 250+, CRA at 1,000+. Penalties up to $500,000 for continuing violations under ORS 646A.604.
9 min read
Oregon Data Privacy Laws: OCPA Consumer Rights Guide (2026)
Learn about Oregon data privacy laws including the OCPA, consumer rights, business obligations, $7,500 penalties, and breach notification rules.
12 min read
Pakistan Data Privacy Laws: PECA and Personal Data Protection Bill Guide (2026)
Guide to Pakistan data privacy laws including PECA 2016, the pending Personal Data Protection Bill, Article 14 privacy rights, and telecom data regulations.
12 min read
Panama Data Privacy Laws: Law 81 Compliance Guide (2026)
Guide to Panama data protection law covering consent requirements, data subject rights, ANTAI enforcement, and cross-border transfer rules.
10 min read
Pennsylvania Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Pennsylvania lacks a standalone biometric privacy law. Learn how BPINA, the UTPCPL, and pending bills like HB 78 and HB 596 affect biometric data rights.
9 min read
Pennsylvania Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Pennsylvania requires breach notification without unreasonable delay. The 2024 BPINA amendment adds AG notice at 500+, 12-month credit monitoring, and health insurance data coverage.
9 min read
Pennsylvania Data Privacy Laws: Breach Notification & Consumer Rights (2026)
Guide to Pennsylvania data privacy laws including breach notification under BPINA, the all-party consent Wiretap Act, pending HB 78 consumer privacy bill, and AG enforcement.
14 min read
Peru Data Privacy Laws: Law 29733 Personal Data Protection Guide (2026)
Complete guide to Peru data privacy laws under Law 29733 and the 2024 regulatory reform. Learn about ANPDP enforcement, penalties, cross-border transfers, and compliance.
11 min read
Philippines Data Privacy Laws: DPA 2012 Compliance Guide (2026)
Complete guide to Philippine data privacy law under RA 10173. Covers NPC enforcement, data subject rights, breach notification rules, penalties up to PHP 5M, and cross-border transfers.
14 min read
Poland Data Privacy Laws: GDPR & UODO Guide (2026)
Complete guide to Poland data privacy laws including GDPR implementation, UODO enforcement, notable fines, breach notification rules, and Polish-specific provisions.
12 min read
Portugal Data Privacy Laws: GDPR Implementation Guide (2026)
Learn how Portugal implements GDPR through Law 58/2019, the role of the CNPD supervisory authority, enforcement fines, employee monitoring rules, and compliance tips.
11 min read
Privacy Policy Requirements: What You Must Include (2026)
What US and international laws require in a privacy policy. Covers CCPA, GDPR, CalOPPA, COPPA, mandatory disclosures, penalties, and update frequency.
11 min read
Qatar Data Privacy Laws: Law 13 of 2016 Personal Data Protection Guide (2026)
Complete guide to Qatar data privacy laws under Law No. 13 of 2016. Learn about the NDPO enforcement, penalties up to QAR 5 million, cross-border transfers, and compliance.
10 min read
Rhode Island Biometric Privacy Laws: Collection, Consent & Penalties (2026)
Rhode Island biometric privacy laws under the RIDTPPA require opt-in consent for fingerprint and biometric data collection, with AG-enforced penalties up to $10,000 per violation.
10 min read
Rhode Island Data Breach Notification Laws: Reporting Rules & Timelines (2026)
Rhode Island requires data breach notification within 45 days (30 for government). Learn about the 128-bit encryption safe harbor, AG reporting at 500+, and per-record penalties.
8 min read