United States of America: Introduced Senate Bill 569 includes data protection requirements

The Senate Bill 569 for a Consumer Privacy Act (CPA) is introduced in the General Assembly of North Carolina. The Senate Bill also expands consumer rights. Specifically, the proposed CPA specifies the consumer's rights of knowledge and access; right of correction; right of deletion; right to opt-out; as well as a private right of action. For certain businesses, the bill foresees compliance requirements include the disclosure of the purpose of data collection; the duty to limit the collection of personal data; the obligation to provide clear accessible privacy notices to consumers and the duty to respond to consumer requests. It imposes these obligations on businesses that produce products or provide services to North Carolina residents and either control or process personal data of at least 100,000 consumers per year, or control or process personal data of at least 25,000 consumers and derives over 50% of gross revenue from the sale of personal data.