United States of America: Rejected Oklahoma Computer Data Privacy Act of 2022 (HB 2969)

On 27 May 2022, the Oklahoma Computer Data Privacy Act of 2022 (HB 2969) was rejected after failing to pass before the legislature session adjourned. The Act would have applied to businesses active in Oklahoma with annual revenues above USD 10 million, which annually process the personal data of at least 25’000 consumers, or derive at least 50 per cent of annual revenues from sharing consumer personal information. The Act would have required businesses to outline their data processing policies to consumers before data collection. Only data that is reasonably necessary for providing requested services, or for security purposes or fraud detection, could be collected. Consumers would have the right to request personal data held about them, and to request its deletion or correction.