Press "Enter" to skip to content

State Privacy Legislation Update: What Happened in March, What’s Ahead, and What’s Dead

state privacy legislationThere remain over 30 comprehensive consumer data privacy bills pending in the states, but some are falling off the chart as the legislative sessions come to an end.  While the number of active bills is decreasing, there is one new state data privacy law, and others that continue to show movement. 


The most notable event in March was the passage of Utah SB 227, the “Utah Consumer Privacy Act,” signed by Governor Cox on March 24.  The Act will become effective Dec. 31, 2023, and a summary can be found here.

Connecticut SB 6 was reported favorably as substituted from the joint General Law Committee on March 15 and reported out of the Legislative Commissioners’ Office on March 31.  Connecticut’s legislative session ends May 4. 

Iowa HF 2506 passed in the House on March 14 and referred to the Senate Judiciary Committee.  Iowa’s legislative session ends April 19.

Maryland SB 11 was amended to a “Workgroup on Online Consumer Personal Information” bill that, if passed, will require the workgroup to study online consumer data privacy issues for one year and prepare recommendations.

Oklahoma HB 2969 was engrossed March 28 and referred to the Senate Judiciary and Appropriations Committees.  Oklahoma remains in session through May 27.

A spreadsheet providing details about these bills, and others, can be downloaded here.


Finally, legislation that failed to make it to the finish line since March includes:

For more information and insight from Maurice Wutscher on data privacy and security laws and legislation, visit

Print Friendly, PDF & Email

Eric Rosenkoetter is a principal at Maurice Wutscher LLP, where he provides counsel to businesses and consumer financial services firms nationwide. For many years, he has focused his practice on various aspects of financial services law. As a litigation attorney, he has conducted every aspect of the litigation process, including countless depositions, motion proceedings, bench and jury trials, and appeals in various courts. In addition, he has significant experience as a compliance and transactional attorney, providing strategic, business growth, legislative, compliance and regulatory advice to national corporations and trade associations. For example, he has drafted consumer contracts and disclosures designed to state-specific statutory requirements, and developed “Best Practices” guides and state-by-state compliance grids, for national financial services companies. He also conducted research and crafted a metrics report for a national trade association with analysis designed to counter the claims of advocacy groups. Eric’s experience also includes working for a national corporation as Executive Counsel, Chief Compliance and Ethics Officer, and Director of Legislative Affairs, and as a federal lobbyist and Director of Government and Public Affairs for a national financial services trade association. In the government sector, Eric presided over approximately 6,000 state administrative hearings, served as a staff attorney for the Missouri Senate, and handled litigation in 33 counties as a regional managing attorney. Eric frequently speaks to audiences on topics relevant to the financial services industry including regulatory compliance, data privacy law and related advocacy initiatives. For more information, see

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.