Colorado becomes the nation’s third state - consumerreports.org
Colorado becomes latest state - ZDNet

Regarding the basic framework, the CPA followed the trend of adopting a WPA-like controller/processor approach rather than a California Consumer Privacy Act-like business/service provider distinction.

• The bill requires companies to honor browser privacy signals, such as the Global Privacy Control, in order to opt out of data sales at all companies in a single step

• It requires companies to honor opt out requests submitted by agents designated on the consumer’s behalf

• It prohibits the use of so-called “dark patterns” in obtaining consent to process sensitive information

• The bill has stronger enforcement, by placing a sunset on the “right to cure” in administrative enforcement, so that after 2025 companies will no longer have a “get out of jail free” card for failing to protect consumer privacy

Colorado Privacy Act

C0lorado SB 21-190, entitled “an Act Concerning additional protection of data relating to personal privacy”. Following California’s bold example of the California Consumer Privacy Act (“CCPA”) effective since January 2020, Virginia recently passed its own robust privacy law, the Consumer Data Protection Act (“CDPA”), and New York, as well as other states, like Florida, appear poised to follow suit. Furthermore, California is expanding protections provided by the CCPA, with the California Privacy Rights Act (CPRA) – approved by California voters under Proposition 24 in the November election.

annualcreditreport.com

50% or more of their annual revenue from selling or sharing