FB pixel

The latest US state to consider data privacy law with no right of action: Pennsylvania

The latest US state to consider data privacy law with no right of action: Pennsylvania

The quilt of consumer privacy laws in the United States continues to unfold. This week, lawmakers for the state of Pennsylvania started discussions on their proposed Consumer Data Privacy Act.

House Bill 1201, would let residents opt out of their data processed, according to StateScoop.

More precisely, it would mandate that Pennsylvania businesses make the mechanism for that option. There would be no individual right of action for violations; people would have to petition the state’s attorney general to sue.

Residents would have the right to make businesses confirm that they are accessing or processing their data. Conceivably, that would be every business a consumer interacts with.

The businesses would be required to correct inaccuracies and provide a copy of the data in question.

Biometrics are explicitly included in the Pennsylvanian proposal’s definitions of personal and sensitive data, and excluded from “publicly available information.”

Businesses in the U.S. have for several years bemoaned the possibility of multiple state governments passing their own unique laws regarding privacy. That is exactly what has happened in the absence of federal legislation.

The proposed American Data Privacy and Protection Act (H.R. 8152) would pre-empt the California Consumer Privacy Act, or CCPA, and another privacy act-in-waiting because they conflict with American Data Privacy provisions. That is to say, they hold organizations to a higher standard in terms of consent for collection and management of people’s personal information.

The best-known law is the state of Illinois’ Biometric Information Privacy Act. It requires businesses to get a resident’s consent before gathering or otherwise receiving biometric data. Companies also have to tell people who their data will be managed. Many momentous pro-privacy decisions have resulted from the law.

A chart showing state law and bills compiled by the International Association of Privacy Professionals, shows that 11 states have comprehensive consumer privacy laws. Illinois is not among the 11 because BIPA is not a comprehensive law.

Other laws have been passed in Florida, Texas,

Article Topics

 |   |   |   |   | 

Latest Biometrics News


IOTA’s Web3 IDV project one of 20 projects invited to play in EU sandbox

The European Blockchain Regulatory Sandbox has selected the use cases to be featured in its second cohort of sandbox dialogues….


New eIDAS-Testbed runs first successful tests on European Digital Identity Wallet

The entourage forming around eIDAS continues to grow, as the EU regulation pushes Europe toward a digitized society activated through…


UK Peers slam Ofcom refusal to require biometric age estimation for under-13s

Ofcom’s draft Children’s Safety Code of Practice will leave millions of young people exposed to online harms the legislation behind…


Physical documents still crucial amid slow transition to digital IDs: Regula study

A recent study commissioned by Regula has concluded that digital IDs are not yet poised to replace physical documents in…


Decentralized biometric system proposed for privacy in ICRC aid distribution

Wouter Lueks, faculty member at the CISPA Helmholtz Center for Information Security in Germany explained a proposed system for digital…


Privado ID to tackle global demand for decentralized digital identity software on its own

Privado ID, previously known as Polygon ID, has officially separated from Polygon Labs to address the increasing global need for…


Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Read This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events