Lexology May 20, 2024
Cozen O'Connor

On April 4, Governor Andy Beshear signed the Kentucky Consumer Data Protection Act (KCDPA), making Kentucky the fifteenth state to enact a comprehensive data privacy law. Set to go into effect on January 1, 2026, the KCDPA largely conforms to the majority of other recently enacted state data privacy laws. In particular, the law seems to have been modeled on a neighboring state: Virginia’s Consumer Data Protection Act (VCDPA). The KCDPA does, however, deviate from the majority approach in a few notable ways.

Kentucky’s applicability thresholds mirror those found in the VCDPA. The KCDPA applies to anyone who does business in Kentucky and controls or processes the personal data of either:

  1. at least 100,000 Kentucky consumers or
  2. 25,000 Kentucky...

Today's Sponsors

LEK
ZeOmega

Today's Sponsor

LEK

Continue Reading

 
Topics: Govt Agencies, Healthcare System, Privacy / Security, States
Related Articles:
iOS 18.2—What To Know About ChatGPT Siri Integration And Your Privacy
Every Choice Matters: Data Security And Privacy On AI-Enabled Apps
Here is how Apple protects your privacy with its new AI features
Ensuring the Security and Privacy of Patient Data while Managing Large Volumes of Electronic Health Records (EHRs)
Boosting HIPAA Compliance in EHR Systems with Privacy-by-Design

Share This Article