Lexology April 4, 2023
US LLP

On March 29, 2023, the Iowa Governor signed into law a consumer data privacy law which enters into force on January 1, 2025.

Entities already complying with other enhanced state privacy laws should not experience any significant, additional compliance burdens, while those organizations regulated by the Gramm Leach Bliley Act (GLBA), the Health Insurance Portability and Accountability Act (HIPAA), or the Health Information Technology for Economic and Clinical Health Act (HITECH) will enjoy an entity-level exemption.

The Iowa privacy law, designed to be more business-friendly than other US state privacy laws, also does not apply in the B2B or employment context, and it does not have a private right of action. While it requires businesses that sell data to provide...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, Healthcare System, Privacy / Security, Regulations, States
Related Articles:
Privacy concerns mount as Elon Musk's Grok takes on health data
DHS intros framework for AI safety and security, in healthcare and elsewhere
Why Modern Developers Must Master The Balance Of Privacy And Functionality In Mobile Apps
Navigating Security and Privacy Challenges in Healthcare IT: A Strategic Approach
Balancing Personalized Targeting with Protecting Consumer Privacy

Share This Article