Texas Gov. Greg Abbott on May 27 signed into law Senate Bill 768 which amends the state’s data breach notification statutes. The amendments go into effect Sept. 1, 2023.
Posts published in “Compliance Management”
Montana Gov. Greg Gianforte on May 19 signed into law Senate Bill 384, the Montana Consumer Data Privacy Act, making Montana the ninth state to enact a comprehensive consumer data privacy law, following California, Virginia, Colorado, Utah, Connecticut, Iowa, Indiana, and Tennessee. The law will take effect Oct. 1, 2024.
Tennessee Gov. Bill Lee on May 11 signed into law House Bill 1181, making Tennessee the eighth state to enact a comprehensive consumer data privacy law, following California, Virginia, Colorado, Utah, Connecticut, Iowa, and Indiana. The law will take effect July 1, 2024.
Indiana Gov. Eric Holcomb on May 1 signed into law Senate Bill 5, making Indiana the seventh state to enact a comprehensive consumer data privacy law, following California, Virginia, Colorado, Utah, Connecticut, and Iowa. The law will take effect Jan. 1, 2026.
Kansas Gov. Laura Kelly has approved enactment of Senate Bill 44 which requires certain financial institutions to establish information security standards consistent with the federal Gramm-Leach-Bliley Act’s Safeguards Rule, 16 C.F.R. § 314.1, et seq. The Kansas Financial Institutions Information Security Act becomes effective July 1, 2023.
Iowa Gov. Kim Reynolds on March 28 signed into law SF 262, making Iowa the sixth state to enact comprehensive consumer data privacy legislation. The other states are California, Virginia, Colorado, Utah, and Connecticut. The law will take effect Jan. 1, 2025.
Utah Gov. Spencer Cox on March 23 signed into law Senate Bill 127, which amends the state’s data breach notification statutes. The amendments go into effect May 2, 2023.
March 15 was the deadline for the New York State Department of Financial Services to publish its proposed amendments to its debt collection rule. It didn’t and so they have expired. While the latest version of the proposed amendments has expired, you can bet on DFS releasing an updated version in the coming months.
The New York Department of Financial Services and the New York City Department of Consumer and Worker Protection are simultaneously engaged in amending their consumer debt collection rules. While the DFS rulemaking has been underway for nearly two years, the DCWP began its efforts last fall.
The Consumer Financial Protection Bureau increased the maximum civil penalty it can impose within its jurisdiction after Jan. 15, 2023. The increases are mandated by federal law, which requires agencies to adjust for inflation each civil monetary penalty within an agency’s jurisdiction by Jan. 15, 2023.
Just a few years ago, the annual review would primarily encompass federal activity. But a shift began in 2018, and by the close of this year, it’s clear there is far more state activity impacting consumer debt collection.
The upward trend in data privacy legislation continued in 2022. According to the National Conference of State Legislatures, “[a]t least 35 states and the District of Columbia in 2022 introduced or considered almost 200 consumer privacy bills,” which is a significant increase from 160 bills in 2021.