Das VCDPA tritt am 1. Januar 2023 in Kraft und betrifft Unternehmen und Organisationen, die in Virginia Geschäfte tätigen oder Produkte oder Dienstleistungen für Einwohner von Virginia anbieten.
VCDPA is Virginia Data Protection Act (VDPA or VCDPA) was signed into law in March 2021. VCDPA effective date is January 1, 2023.
Virginia became the second state in the US to pass a comprehensive data privacy law after California.
The Virginia Consumer Data Protection Act (VDPA) operates based on the consumer right to opt-out of having personal data collected, processed, and sold.
It also requires companies and organizations to obtain the consent from end-users if they collect or process sensitive personal data.
It applies to global companies who conduct business in Virginia or produce products or services targeted to Virginia residents.
Either:
The VCDPA will be enforced by the Virginia Attorney General and allows for a 30-day cure period, but uncured non-compliance can result in a civil penalty of up to $7,500 per violation.
If your website uses cookies to collect and process personal data from individuals inside the state of Virginia, users must have the option to opt out of that personal data being used for personlized advertising.
VCDPA is more like GDPR. The VCDPA’s definition of consent is even word-for-word taken from the EU’s GDPR, requiring the “freely given, specific, informed and unambiguous agreement” to constitute a valid end-user consent.
Consent is requried to processing personal and sensitive personal data.
Compare different US State Privacy Laws
Use a consent management platform like UniConsent to offer consumers full control of data collection, opt-out features, manage the preferences communication.
Beginnen Sie damit, Ihre Website und Anwendung gemäß EU-DSGVO, US-CPRA, CA-PIPEDA usw. konform zu machen
Registrieren