Keypoint: Last week, bills advanced in Colorado and California while, with legislatures in multiple states set to close this week, we will know the fate of significant bills in the coming days.
Below is the fifteenth weekly update on the status of proposed state privacy legislation in 2024.
Table of Contents
- What’s New
- Bill Tracker Charts
- Bill Tracker Maps
1. What’s New?
Three legislatures with significant pending bills are set to close this week.
The Connecticut and Colorado legislatures will close on May 8. Connecticut Senator James Maroney’s SB 2 (algorithmic discrimination) previously passed the Senate but has yet to be given a House floor vote.
Colorado Senate Majority Leader Robert Rodriguez’s SB 205, which largely tracks the Connecticut bill, passed the Colorado Senate on May 3 and an amended version made it through a House committee on May 4. For the bill to pass, it needs to make it through two House readings and have the Senate concur in the House amendments.
Meanwhile, the Colorado House unanimously passed Senator Rodriguez’s SB 41 on May 5. The bill unanimously passed the Senate on April 23. The Senate will need to concur in a minor House amendment for final passage. The bill amends the Colorado Privacy Act to add protections for children’s personal data.
In addition, the Vermont legislature is set to close on May 10 (although it could be extended upon agreement). The legislature is currently considering H.121 (consumer data privacy) and S.269 (an Age-Appropriate Design Code Act variant).
In Minnesota, we reported last week that Representative Elkins’ Minnesota Consumer Data Privacy Act has been added to an omnibus bill (HF 4975 / SF 4942). The House bill was placed on the House calendar for a vote on May 1, but it was eventually laid on the table. The bill has now been re-referred to the Ways and Means committee. The Minnesota legislature closes May 20.
In California, the Assembly unanimously passed AB 1824 on May 2. The bill is now with the Senate. The bill would require a business to which another business transfers the personal information of a consumer as an asset that is part of a merger, acquisition, bankruptcy, or other transaction in which the transferee assumes control of all or part of the transferor to comply with a consumer’s opt-out direction to the transferor.
In Delaware, HB1 was substituted for HB 359. The original bill would have applied the Delaware Personal Data Privacy Act (passed last year) to the state government. The substituted bill only seeks to apply the Delaware privacy law’s opt out rights to the state government.
Finally, Hawaii’s legislature closed without passing a privacy bill. The legislature had been considering consumer data privacy, biometric privacy, children’s data privacy, data broker, and health data privacy bills.
2. Bill Tracker Charts
For more information on all of the bills introduced to date, including links to the bills, bill status, last action, hearing dates, and bill sponsor information, please see the following charts:
- Consumer Data Privacy Bills
- Biometric Privacy Bills
- Children’s Privacy Bills
- Consumer Health Data Privacy Bills
- Data Broker Bills
Husch privacy clients can access unredacted copies of the charts through Byte Back+.
3. Bill Tracker Maps
To access our tracker maps, click the following links: