Your Resources for the U.S. State Consumer Privacy Laws

Since the United States’ first comprehensive consumer privacy law, the California Consumer Privacy Act, became operative, a number of other states have followed suit. Comprehensive consumer privacy laws are now also operative in Colorado, Connecticut, Utah, and Virginia, and similar laws in Iowa, Indiana, Tennessee, Montana, Florida, Texas, Oregon, Delaware, and New Jersey will become operative in 2024 and beyond.

These state laws require that businesses have privacy notices that contain specific information and give consumers rights, such as the right to access, correct, and delete their personal information, to opt out of the sale of their personal information and its use for targeted advertising and automated decision-making, and to consent to, or opt out of, the use of their sensitive personal information. The laws also require businesses to protect personal information, conduct privacy assessments, and not give consumers less favorable terms when they exercise their rights. The laws also contain special protections for children, purpose limitations, data minimization requirements, and required provisions for contracts with service providers.

Our team has been closely monitoring the developments related to these laws, and similar pending state bills across the United States, and we have written and presented extensively on these laws and their practical implications. We are providing the resources on these pages as an overview to help companies identify their obligations, track legislative and enforcement trends, and ultimately mitigate risk.

U.S. State Privacy Laws Map

Dive Deeper into the U.S. State Privacy Laws

Insights

Morrison Foerster

Stay on top of significant updates to U.S. State Consumer Privacy Laws with our Privacy + Data Security team’s client alerts, news, and webinars.

Learn More

Resource Centers

Privacy Library

Privacy Library Resource Center

Privacy Library

The Privacy Library is the most comprehensive collection of privacy laws and regulations ever assembled, 

Learn More

GDPR + European Privacy Resource Center

GDPR Local Implementation

GDPR + European Privacy Resource Center

Privacy and data protection compliance in Europe is a C-suite level priority for all organizations.

Learn More

China Privacy and Data Security

China

China Privacy and Data Security

With its growing complexity of network security and data privacy legislation and standards, China has become a critical part of our global practice.

Learn More

Cybersecurity Resource Center

Privacy + Data Security Resources

Cybersecurity Resource Center

We work with clients to help them be aware of critical cyber risks and prepare for incidents.

Learn More

Whistleblowing Resource Center

Hand on laptop

Whistleblowing Resource Center

Your Resources for the GDPR and the Whistleblowing Directive

Learn More

A MoFo Privacy Minute Series

Boardroom seats

A MoFo Privacy Minute Series

A MoFo Privacy Minute: where we will answer the questions our clients are asking us in sixty seconds or less.

Learn More
Sign up to receive up-to-the-minute legal and business analysis on the latest privacy and data security topics.