Colorado Becomes Third State to Enact Omnibus Privacy Act

Effective, July 1, 2023, controllers must comply with personal data processing principles (transparency, purpose limitation, data minimization, security), conduct impact assessments for processing of targeted ads, data sales, and sensitive data processing, and comply with consumer requests (access, correction, deletion, data portability, opt out); violations can result in action by the AG and district attorneys, with no private right of action for consumers.

 

Total
0
Shares
Previous Post

Connecticut Provides Defense Against Data Breach Claims

Next Post

Ransomware : Only 50% of organizations are able to effectively defend against attacks warns report/

Related Posts
Total
0
Share
en_USEN