FB pixel

Delaware enacts wide data privacy law without consumer right to sue

Delaware enacts wide data privacy law without consumer right to sue
 

A new consumer data privacy enacted in Delaware applies to wider range of businesses than similar laws in other states, but critics say a legal technicality makes it toothless.

StateScoop reports that House Bill 154 gives customers the legal right to know what businesses are doing with their personal data, including biometrics. They can ask businesses to delete it, and opt out of schemes that use their data for targeted advertising. But the law does not allow them to bring civil action for individual complaints.

Instead of providing what is called a private right of action, the Delaware Personal Data Privacy Act will see cases adjudicated by the state’s justice department, which will issue notices to companies in violation, giving them 60 days to achieve compliance.

In other states, disagreement over whether enabling a private right to action helps or hinders in making a law enforceable has been a political torpedo. In 2021, Florida legislators failed to reach an agreement on proposed consumer-data privacy regulations, with private right to action being the main sticking point. Washington state lawmakers have tried and failed three times to pass data privacy legislation providing an individual right to bring civil action.

Meanwhile, Illinois’ lodestone 2008 Biometric Information Privacy Act (BIPA), considered by many to be the gold standard for biometric data privacy legislation, does include a private right of action. BIPA has been the basis for settlements in other states, including the major suit brought against the controversial facial recognition firm, Clearview AI.

That potential snag notwithstanding, Delaware’s new law means that any businesses in Delaware that “control or process the personal data of at least 35,000 customers” will be subject to its provisions.

Concerned entities, however, have time to strategize on a response. The new law will take effect on January 1, 2025. An outreach campaign is scheduled to start six months ahead of that.

Article Topics

 |   |   |   |   | 

Latest Biometrics News

 

Deepfakes are testing the limits of American governance

Under the looming omnipresence of AI, the United States finds itself at a crossroads in determining how best to regulate…

 

Move in House to block state AI laws draws bipartisan fire; Senate support questionable

The U.S. House of Representatives this week passed a sweeping budget reconciliation package that includes a controversial provision that would…

 

Mom sues porn sites for noncompliance with Kansas age assurance law

You can mess with the law – but don’t mess with the moms who catch their sons in compromising acts….

 

Spike in first party fraud could presage raging storm of generative AI

The latest version of LexisNexis Risk Solutions’ annual Cybercrime Report shows what a release calls “a significant swing in the…

 

Digital ID, payments providers are trying to solve eIDAS ambiguities

The EU has been busy building a regulatory foundation for its European Digital Identity (EUDI), which will be offered to…

 

First Person Credentials next solution in line to solve proof-of-personhood

An announcement from Ayra Association says that Customer Commons has provided funding to develop “a framework for governing interoperability of…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Biometric Market Analysis

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events