Keypoint: Last week, Kentucky’s governor signed a bill amending the state’s data privacy law while bills advanced in Connecticut, Illinois, New Hampshire, Pennsylvania, Tennessee, Texas, and West Virginia.
Below is the eleventh weekly update on the status of proposed state privacy legislation in 2025. As always, the contents provided below are time-sensitive and subject to change.
Table of Contents
- What’s New
- AI Bills
- Bill Tracker Chart
1. What’s New
On March 15, Kentucky Governor Andy Beshear signed HB 473 into law. The bill amends Kentucky’s consumer data privacy law to add a healthcare-related exemption and make technical changes. Kentucky’s legislature closes March 28. The other Kentucky bill we have been tracking – HB 12 (social media) – has not advanced since March 4.
In Connecticut, the Joint General Law committee voted two bills out on March 21. First, the committee voted an amended SB 1356 out by a 16-5 vote. Among other things, the bill amends the state’s consumer data privacy law and adds data broker registration requirements. The committee also voted out an amended SB 1295 out by a 21-0 vote. That bill amends the children’s privacy provisions in the state’s data privacy law.
In New Hampshire, an amended HB 195 was voted out of committee on March 17. The amended text is not yet available. The as-introduced bill creates new privacy rights for information held by “third party providers of information and services” which is defined as “individuals or organizations that collect personal information about an individual in connection with providing the following kinds of services to that individual: cellular and land-line telephone, electric, water, or other utilities; Internet service providers; cable television; streaming services; social media services; email service providers; banks and financial institutions; insurance companies; and credit card companies.”
In Pennsylvania, HB 78 was amended and reported out of committee on March 18. Meanwhile, what appears to be a companion bill (SB 112) was filed in the Senate.
In West Virginia, HB 2987 – the West Virginia Consumer Credit and Protection Act – is now on first reading on the House floor. The West Virginia legislature has a cross over deadline of April 2 and closes its session on April 12.
Turning to new bills, a group of North Carolina House members introduced HB 462 – the North Carolina Personal Data Privacy Act – on March 19.
Moving to other types of bills, two Illinois House bills moved through committee last week and are on the House floor. HB 3494 creates the Protect Health Data Privacy Act while HB 3712 creates the Privacy Protections for Location Information Derived from Electronic Devices Act.
In Tennessee, an amended HB 825 (the Teen Social Media and Internet Safety Act) passed out of committee on March 19 and has been placed on the regular calendar for March 27.
In Texas, SB 1343 was reported favorably out of committee and placed on the intent calendar. The bill amends Texas’ existing data broker law.
Finally, a new neural data privacy bill was introduced in Alabama (HB 436).
We also saw bills in two states fail last week. Maryland‘s deadline for bills to cross chambers passed on March 17. None of the three bills we have been tracking survived. New Mexico‘s session closed on March 22. The four bills we have been tracking did not pass.
Looking ahead, Oklahoma‘s crossover deadline is March 27 while Georgia‘s session closes April 4. Finally, the Virginia Governor’s deadline to act on the two bills that passed this year is March 24.
2. AI Bills
Our latest edition of Byte Back AI is now available to subscribers. Subscriptions start as low as $50/month. In this edition, we provide:
- Updates on AI bills in numerous states, including a bill passing the Montana legislature, and bills crossing chambers in New Mexico, North Dakota, Vermont, New Hampshire, Texas, and Kansas.
- Our special feature this week is an analysis of New Jersey’s HB 3540 (deepfakes).
- Summaries of hearings with the California Civil Rights Council and a committee hearing on Montana’s HB 178 (government use of AI).
- Our “three things to know this week.”
- An updated state AI bill tracker chart.
Click here for more information on paid subscriptions.
3. Bill Tracker Chart
For more information on all of the privacy bills introduced to date, including links to the bills, bill status, last action, and hearing dates, please see our bill tracker chart.