How goes Personal Data Protection in the United States of America?

October 31, 2022

The entry into force of the General Data Protection Regulation (GDPR) in the European Union, in 2018, gave rise to concerns about the issue of protection of personal data in the United States of America, especially after the European Court ruled that the Privacy Shield would no longer be accepted as a guarantee for the transfer of personal data of European citizens to the US.

The EU-US Privacy Shield went into effect on August 1, 2016, after the European Commission issued its formal decision that the Privacy Shield provides adequate protection for the transfer of personal data to the United States, in lieu of Safe Harbor. It mandated stricter obligations on US companies to protect Europeans' personal data and required more robust monitoring from the US, as well as further cooperation with European data protection authorities. It included written commitments and guarantees regarding access to data by public authorities. The US Department of Commerce oversaw certification, and if the company to which the data was intended to be transferred was not certified, Privacy Shield protections did not apply.

The fact is that the European Court came to the conclusion that some US dogmas such as the National Security Act had priority over Privacy Shield and therefore it would not be sufficient to guarantee the protection of data for European citizens.

Since then, some North American States began to move towards regulating the protection of personal data, the most famous of which being the California Consumer Privacy Act (CCPA), which entered into force on July 1, 2020; therefore prior even to the Brazilian General Data Protection Act (LGPD).

Below are the US states which have personal data protection acts, as of October 2022:

STATE

NAME

IN FORCE SINCE

Nevada

Nevada Security and Privacy of Personal Information Act

October 01, 2017

Maine

Maine Broadband Internet Access Service Customer Privacy Act

July 01, 2020

California

California Consumer Privacy Act (CCPA)

July 01, 2020

Rhode Island

Rhode Island Transparency and Privacy Protection Act

March 01, 2021

Virginia

Virginia Consumer Privacy Act (VCPA)

March 02, 2021

Colorado

Colorado Privacy Act (CPA)

July 08, 2021

Utah

Utah Consumer Privacy Act (UCPA)

March 24, 2022

In addition to the above states, Ohio, Pennsylvania, Michigan, and New Jersey have bills related to privacy and protection of personal data pending in their respective courts.

With the exception of the regulations in force in the states of Nevada and Maine, which are more thorough, all the others end up prohibiting the commercialization of personal data of individuals without their prior consent. And, unlike GDPR or LGPD, these do not create legal bases to support the processing of personal data.

No items found.

RECENT POSTS

Você sabe o que é a No Surprises Act? Entenda sua importância

October 7, 2024

SEC Combate Retaliação de Empresas Contra Informantes

September 20, 2024

CFM Intervém na Relação do Médico com a Indústria Farmacêutica e de Produtos Médicos

September 12, 2024

Do you know what the No Surprises Act is? Understanding its importance

October 7, 2024

SEC Combats Corporate Retaliation Against Whistleblowers

September 20, 2024

The Brazilian Medical Association Intervenes in the Relationship between Physicians and the Pharmaceutical and Medical Products Industry

September 12, 2024

Contracts and artificial intelligence: legal and ethical considerations

November 13, 2024

Digital Signatures in Contracts (Part 2)

November 5, 2024

Contractual dispute resolution: choosing the right mechanism

October 16, 2024

LINKEDIN FEED

Newsletter

Register your email and receive our updates

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

FOLLOW US ON SOCIAL MEDIA

Newsletter

Register your email and receive our updates-

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.

FOLLOW US ON SOCIAL MEDIA

Licks Attorneys' Government Affairs & International Relations Blog

Doing Business in Brazil: Political and economic landscape

Licks Attorneys' COMPLIANCE Blog

How goes Personal Data Protection in the United States of America?

October 31, 2022
No items found.

The entry into force of the General Data Protection Regulation (GDPR) in the European Union, in 2018, gave rise to concerns about the issue of protection of personal data in the United States of America, especially after the European Court ruled that the Privacy Shield would no longer be accepted as a guarantee for the transfer of personal data of European citizens to the US.

The EU-US Privacy Shield went into effect on August 1, 2016, after the European Commission issued its formal decision that the Privacy Shield provides adequate protection for the transfer of personal data to the United States, in lieu of Safe Harbor. It mandated stricter obligations on US companies to protect Europeans' personal data and required more robust monitoring from the US, as well as further cooperation with European data protection authorities. It included written commitments and guarantees regarding access to data by public authorities. The US Department of Commerce oversaw certification, and if the company to which the data was intended to be transferred was not certified, Privacy Shield protections did not apply.

The fact is that the European Court came to the conclusion that some US dogmas such as the National Security Act had priority over Privacy Shield and therefore it would not be sufficient to guarantee the protection of data for European citizens.

Since then, some North American States began to move towards regulating the protection of personal data, the most famous of which being the California Consumer Privacy Act (CCPA), which entered into force on July 1, 2020; therefore prior even to the Brazilian General Data Protection Act (LGPD).

Below are the US states which have personal data protection acts, as of October 2022:

STATE

NAME

IN FORCE SINCE

Nevada

Nevada Security and Privacy of Personal Information Act

October 01, 2017

Maine

Maine Broadband Internet Access Service Customer Privacy Act

July 01, 2020

California

California Consumer Privacy Act (CCPA)

July 01, 2020

Rhode Island

Rhode Island Transparency and Privacy Protection Act

March 01, 2021

Virginia

Virginia Consumer Privacy Act (VCPA)

March 02, 2021

Colorado

Colorado Privacy Act (CPA)

July 08, 2021

Utah

Utah Consumer Privacy Act (UCPA)

March 24, 2022

In addition to the above states, Ohio, Pennsylvania, Michigan, and New Jersey have bills related to privacy and protection of personal data pending in their respective courts.

With the exception of the regulations in force in the states of Nevada and Maine, which are more thorough, all the others end up prohibiting the commercialization of personal data of individuals without their prior consent. And, unlike GDPR or LGPD, these do not create legal bases to support the processing of personal data.

Related
No items found.

ABOUT US

Licks’ Blog provides regular and insightful updates on Brazil’s political and economic landscape. The posts are authored by our Government Affairs & International Relations group, which is composed of experienced professionals from different backgrounds with multiple policy perspectives.

Licks Attorneys is a top tier Brazilian law firm, speciallized in Intellectual Property and recognized for its success handling large and strategic projects in the country.

ABOUT US

Licks Attorneys Compliance’s Blog provides regular and insightful updates about Ethic and Compliance. The posts are authored by Alexandre Dalmasso, our partner. Licks Attorneys is a top tier Brazilian law firm, specialized in Intellectual Property and recognized for its success handling large and strategic projects in the country.

QUEM SOMOS

O blog Licks Attorneys Compliance fornece atualizações regulares e esclarecedoras sobre Ética e Compliance. As postagens são de autoria de Alexandre Dalmasso, sócio do escritório. O Licks Attorneys é um escritório de advocacia brasileiro renomado, especializado em Propriedade Intelectual e reconhecido por seu sucesso em lidar com grandes e estratégicos cases no país.

Follow Us on Social Media

Offices

Rio de Janeiro

Av. Oscar Niemeyer, 2000
9th floor, Aqwa Corporate
Rio de Janeiro RJ - Brazil
20220-297
Phone: +55 21 3550 3700
Fax: +55 21 3956 9444
info@lickslegal.com

Sao Paulo

Rua George Ohm, 230
Tower A CJ 112/113
Sao Paulo SP - Brazil
04576-020
Phone: +55 11 3033 3700
info@lickslegal.com

Brasilia

SH/Sul Zone 06, Unit A,
Complexo Brasil 21, Block E,
Rooms 515 and 516 – Asa Sul
Brasilia DF - Brazil
70316-902
Phone: + 55 61 3772 3700
info@lickslegal.com

Curitiba

Rua da Glória, 251, #601
Centro Cívico
Curitiba - Brazil
80030-060
Phone: + 55 41 2391 0680
info@lickslegal.com

Tokyo

Chiyoda Kaikan Bldg, 6F, 1-6-17
Kudan Minami Chiyoda-Ku
Tokyo - Japan
102-0074
Phone:+81 3 6256 8972
Fax:+81 (03) 6740 1453
japan@lickslegal.com

© Copyright 2024 Licks Attorneys

Selo COVID-19 FIRJAN e Albert Einstein
Covid-19 Safe Certified Office