top of page
Search

Texas Data Privacy and Security Act (TDPSA)

  • Writer: Wei Wei Jeang
    Wei Wei Jeang
  • Nov 11, 2024
  • 2 min read

The Texas Data Privacy and Security Act (TDPSA) took effect on July 1, 2024. This new law is designed to give Texans more control over their personal data, aligning Texas with other states like California and Virginia that have also implemented comprehensive privacy laws.


Key Features of the Texas Data Privacy Law (TDPSA):

  1. Applicability:

    • The law applies to businesses that “conduct business in [Texas] or produce a product or service consumed by residents of [Texas]” and that collect, use, store, sell, share, analyze, or process consumers’ personal data.

    • Small businesses (as defined by the federal Small Business Administration) are generally exempt from the Act, except that if a small business sells the sensitive data of a consumer, it must first obtain the consumer’s consent.


  2. Consumer Rights:

    • Texans will have the right to access, correct, delete, and opt-out of the processing of their personal data.

    • Consumers will also have the right to data portability, meaning they can request a copy of their data in a portable, easily transferable format.


  3. Sensitive Data:

    • The TDPSA requires businesses to obtain explicit consent before processing "sensitive data" such as genetic or biometric information, mental or health data, religious beliefs, sexuality, citizenship, immigration status, precise geolocation data, and information about race or ethnicity.

    • Sensitive data also includes personal data of a child under the age of 13.


  4. Opt-Out Rights:

    • Consumers can opt-out of the sale of their personal data or targeted advertising.


  5. Data Protection Assessments:

    • Businesses are required to perform data protection assessments when processing personal data for targeted advertising, selling data, or processing sensitive data.


  6. Enforcement:

    • Unlike the California law, Texas does not provide a private right of action (meaning individuals cannot sue for violations). Instead, enforcement is handled by the Texas Attorney General, who may issue civil investigative demands, and file enforcement actions to obtain civil penalties, injunctive relief, attorney’s fees, and costs.

    • Businesses may face fines of up to $7,500 per violation if they fail to comply.


Importance:

The TDPSA is important because it reflects growing concerns about data privacy across the U.S., where consumers are demanding greater protection and control over their personal information. The law also encourages businesses to implement stronger data security practices to prevent breaches and misuse of personal data.


ree

Please contact Shereen El Domeiri (seldomeiri@fultonjeang.com) regarding the Texas Data Privacy Law to ensure that your business is in compliance with this new law.

 
 
 

Comments

Commenting on this post isn't available anymore. Contact the site owner for more info.

FAQ

FJ Logo

Copyright Fulton Jeang PLLC. All rights Reserved.

Fulton Jeang PLLC is a Texas-based law firm with principal offices in Dallas, Austin, Houston, Tyler, and San Antonio.

Legal Disclaimer.

  • Facebook
  • LinkedIn

Fulton Jeang PLLC Capability Statement

Fulton_Jeang_PLLC__BigLaw_Expertise,_Virtual_Savings,_and_Moder

Listen to this informative audio podcast about Fulton Jeang PLLC.

Fulton Jeang PLLC is a certified women-owned (WBE & WOSB) law firm. We have garnered a spot among IP law firms recognized by Chambers USA in its Regional Spotlight for Texas.

Women's Business Enterprise Certification logo
SBA Woman Owned Business certification logo
bottom of page