Press "Enter" to skip to content

‘Consumer Data Privacy Act’ Introduced in Mississippi With Expansive Coverage

Mississippi Consumer Data Privacy ActLegislators in Mississippi recently introduced SB 2548. the “Mississippi Consumer Data Privacy Act.” The bill contains provisions similar to the California Consumer Privacy Act but goes further than the CCPA with a lower annual gross revenue threshold, applying to any for-profit business, or any entity that controls or is controlled by such a business, that does business in Mississippi and:

  1. Has annual gross revenues in excess of $10 million (instead of $25 million);
  2. Alone or in combination, annually buys, receives for the business’s commercial purposes, sells or shares for commercial purposes, alone or in combination, the personal information of 50,000 or more consumers, households or devices; or
  3. Derives 50% or more of its annual revenues from selling consumers’ personal information.

The legislation would provide consumers the right to know and request deletion of personal information collected about them and to opt-out of the sale of their personal information.  It includes CCPA-like requirements for submitting, receiving and verifying consumer requests.

The legislation does not include any exemptions for businesses or personal information subject to HIPAA, FCRA or GLBA.

The legislation provides for a 30-day opportunity to cure, a private right of action in the event of a breach for statutory damages of $100 to $750 or actual damages, whichever is greater, and civil penalties of up to $7,500 for each violation.

The legislation would become effective July 1, 2021, and the attorney general is tasked with rulemaking.

Eric Rosenkoetter is a principal at Maurice Wutscher LLP, and is focused on advising clients with respect to federal and state consumer financial protection laws and data privacy and security, and he is a Certified Information Privacy Professional though the International Association of Privacy Professionals. He also brings to the table experience as a litigator, chief compliance and ethics officer, director of legislative affairs, federal lobbyist, and administrative hearings officer. Eric earned his Juris Doctor from Washington University School of Law, and his Bachelor of Business Administration from Southern Methodist University. He is a member of the International Association of Privacy Professionals, the Receivables Management Association International (RMAI), and ACA International. He is admitted to practice law in Texas and Missouri and in the U.S. District Courts for the Northern, Southern, Eastern, and Western Districts of Texas. For more information, see https://mauricewutscher.com/attorneys/eric-rosenkoetter/

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.