UniConsent

Connecticut Data Protection Act

Consumer privacy law in Connecticut, Connecticut Data Protection Act

FeaturesGet Started

What is CTDPA?

CTDPA is Connecticut Data Protection Act was signed into law on 28 April 2022. It is a data privacy law similar to US CCPA.

Who does the CTDPA apply to?

  1. personal data of a minimum of 100,000 consumers (excluding personal data that is controlled or processed solely for the purpose of completing payment transactions), or
  2. personal data of a minimum of 25,000 consumers, and derived over 25 % of their gross revenue from selling personal data.

Personally Identifiable Information (PII)

  • Biometric information
  • Credit and debit card numbers
  • Drivers’ license and license plate numbers
  • Email addresses
  • Employment information
  • Financial data
  • Healthcare and insurance information
  • Mailing addresses
  • Military ID numbers
  • Passport ID numbers
  • Passwords
  • Physical addresses
  • Social Security Numbers
  • Student ID numbers
  • Telephone numbers
  • Usernames

Sensitive personal information

  • “data revealing racial or ethnic origin, religious beliefs, mental or physical health condition or diagnosis, sex life, sexual orientation or citizenship or immigration status”,
  • genetic or biometric data that is processed to uniquely identify an individual,
  • “personal data collected from a known child” or
  • “precise geolocation data”.

Consumer rights under CTDPA

  1. to confirm whether a controller is processing their personal data;
  2. to obtain access to such data;
  3. to be provided with a copy of their personal data in a portable and readily usable format;
  4. to correct any inaccuracies contained therein; and
  5. to delete personal data provided by them or received about them.

CTDPA enforcement and fines

A violation of the CTDPA constitutes an unfair trade practice under the Connecticut Unfair Trade Practices Act, which provides for penalties up to $5,000 per wilful violation.

CTDPA and consent management

The consumer’s consent has to be obtained to process sensitive data and the consent option must be designed as an opt-in.

Consumers must have the possibility to opt-out of the processing of their personal data for the purposes of targeted advertising, the sale of their personal data (unless an exception applies), or, “profiling in furtherance of solely automated decisions that produce legal or similarly significant effects concerning the consumer.

The Connecticut Data Protection Act (CTDPA) Timeline

  • Signed into law on April 28, 2021
  • The CTDPA will take effect on July 1, 2023

Other US State Privacy Laws

  • CCPA: California Consumer Privacy Act, learn more at CCPA
  • CPRA: California Privacy Rights Act, learn more at CPRA
  • CPA: Colorado Privacy Act, learn more at CPA
  • VCDPA: Virginia Consumer Data Protection Act, learn more at VCDPA
  • UCPA: Utah Consumer Privacy Act, learn more at UCPA
  • CTDPA: Connecticut Data Protection Act, learn more at CTDPA
  • COPPA: Children’s Online Privacy Protection Act, learn more at COPPA

Compare different US State Privacy Laws

How to compliant with and implement the Connecticut Data Protection Act Compliance Solution?

Use a consent management platform like UniConsent to offer consumers full control of data collection, opt-out features, manage the preferences communication.

Comply With Global Privacy Regulations

General Data Protection Regulation (GDPR)

Achieve seamless compliance with the General Data Protection Regulation (GDPR) – the cornerstone of data privacy in the European Union. Safeguard user data and build trust with our comprehensive GDPR compliance solutions.

California Consumer Privacy Act (CCPA)

Navigate the intricate landscape of the California Consumer Privacy Act (CCPA) effortlessly. Our CCPA compliance tools ensure that you adhere to the rigorous data protection standards required for California residents.

U.S. State Privacy Laws

Stay ahead of evolving privacy regulations in the United States. Our platform supports a range of state-specific laws, including CCPA, CPRA, CPA, VCDPA, UCPA, and COPPA, ensuring you remain compliant across all jurisdictions.

California Privacy Rights Act (CPRA)

Embrace the future of data privacy with the California Privacy Rights Act (CPRA). As a pioneering state-level legislation, CPRA empowers businesses to enhance their data protection practices and prioritize consumer privacy.

Colorado Privacy Act (CPA)

Prepare for the Colorado Privacy Act (CPA) with UniConsent CMP. Our solutions help you meet the stringent requirements of this forward-thinking state-level privacy law, ensuring the highest level of data security and compliance.

Virginia Consumer Data Protection Act (VCDPA)

Comply confidently with the Virginia Consumer Data Protection Act (VCDPA). UniConsent CMP provides the tools and expertise to ensure your organization aligns with VCDPA's robust data privacy framework, bolstering trust among Virginia residents.

Utah Consumer Privacy Act (UCPA)

Protect user data effectively with the Utah Consumer Privacy Act (UCPA). UniConsent CMP offers solutions that facilitate compliance with this emerging privacy law, ensuring your business is well-prepared for data privacy challenges in Utah.

Connecticut Data Protection Act (CTDPA)

Guard user information and uphold their privacy rights under the Connecticut Data Protection Act (CTDPA). UniConsent CMP's suite of compliance tools empowers you to navigate this state-level law seamlessly and responsibly.

Children’s Online Privacy Protection Act (COPPA)

Prioritize children's privacy with UniConsent CMP's COPPA compliance solutions. Complying with the Children’s Online Privacy Protection Act (COPPA) is simplified, allowing you to provide a safe online environment for young users.

General Data Protection in Thailand (PDPA)

Adhere to the Personal Data Protection Act 2019 (PDPA) in Thailand with UniConsent CMP. Our expertise in PDPA compliance ensures that your organization can operate confidently and securely in the Thai market while respecting user data privacy.

The General Data Protection Law in Brazil (LGPD)

UniConsent CMP facilitates compliance with Brazil's General Data Protection Law (LGPD). Our solutions empower businesses to meet LGPD's stringent requirements, safeguarding the personal data of individuals in Brazil.

China Personal Information Protection Law (PIPL)

Prepare for the China Personal Information Protection Law (PIPL) with UniConsent CMP. As data protection regulations evolve in China, our platform ensures your organization is well-equipped to handle personal information responsibly and securely.

Protection of Personal Information Act in South Africa (POPIA)

The Summary of Protection of Personal Information Act, POPI Act, POPIA, South African Privacy Law.

India’s Personal Data Protection (PDP)

The Personal Data Protection bill for India could require changes to your data management and is not directly solved with GDPR compliance.

Turkey Personal Data Protection Law (KVKK)

The Summary of Turkey’s Personal Data Protection Law: KVKK.

UK General Data Protection Regulation (UK GDPR)

Achieve seamless compliance with the General Data Protection Regulation (GDPR) – the cornerstone of data privacy in the UK. Safeguard user data and build trust with our comprehensive GDPR compliance solutions.

IAB registered consent manager for GDPRIAB TCF V2 registered consent manager for GDPRIAB TCF Canada registered consent managerGoogle-certified CMP
Trusted by 5000+ of global publishers and marketers
  • sej
  • football365
  • sharethrough
  • districtm
  • pf1
  • tower cast

Get started to make your website and application compliant for EU GDPR, US CPRA, CA PIPEDA etc

Sign up