Tennessee Eighth State to Pass Privacy Law

Tennessee have become the eighth state to sign into law their own comprehensive privacy law. The Tennessee Information Privacy Act (TIPA) will become effective on July 1, 2025. TIPA follows quickly on the heels of Iowa and Indiana and it seems that Montana may not be far behind.

There are many similarities to the existing laws in the US already and will be provide a full breakdown on our United States Privacy Laws page very soon. In the meantime here are some highlights.

Who It Affects

TIPA will apply to any entities that conduct business in Tennessee or provide products or services to Tennessee residents. They will also need to exceed $25 million in revenue and meet one of the following criteria:

  • Control or process information of 25,000 or more Tennessee consumers per year and derive more than 50% of gross revenue from the sale of personal information; or,
  • Control or process the information of at least 175,000 Tennessee consumers.

Consumer Rights

  • Right to confirm
  • Right to access
  • Right to correct
  • Right to delete
  • Right to obtain a copy of their personal information
  • Right to opt-out of certain uses of their data.

You can read more about TIPA in detail here.

A blue gradient background which is darker in the bottom right and lighter in all other corners. In the centre is a logo for Value Privacy. It is value privacy written in white, privacy is bold, value is not and there is a yellow fullstop after privacy. Underneath this logo is written "Making Privacy Simple" in yellow

Value Privacy’s experts are on hand to make sure that you and your company aren’t caught out by new or existing privacy laws.

You can find out more about the services we offer or just get in touch with us directly with any questions you have about how privacy laws impact you.

Previous Post
A man sits at a computer typing on a keyboard, there is also a laptop to the left of the main computer screen. Both screens show lots of HTML code

Hackers are Holding Personal Data Hostage

Next Post

Croatian Debt Collector Fined For GDPR Violations