ARTICLE
30 April 2021

Will Oklahoma Be The Next State To Enact A Comprehensive Privacy Bill?

SP
Squire Patton Boggs LLP

Contributor

Squire Patton Boggs LLP logo

Squire Patton Boggs is a full service global law firm providing insight at the point where law, business and government meet, giving you a voice, supporting your ambitions and achieving successful outcomes.

With a multidisciplinary team of over 1,500 lawyers in over 40 offices across four continents, we are well-established geographically with strong local and regional positions in North America, Europe, Asia Pacific, the Middle East and Latin America, and our practice experience spans all key sectors.

Explore Firm Details
On March 4, the Oklahoma Computer Data Privacy Act (HB 1602) passed the state House of Representatives by a vote of 85-11. If enacted in its current form, the bill would take effect on January 1, 2023
United States Oklahoma Privacy
Lydia De La Torre and Ann J. LaFrance
Lydia De La Torre’s articles from Squire Patton Boggs LLP are most popular:
  • within Privacy topic(s)
  • in United States

A new privacy bill is gaining steam in the Oklahoma legislature.

On March 4, the Oklahoma Computer Data Privacy Act (HB 1602) passed the state House of Representatives by a vote of 85-11.  If enacted in its current form, the bill would take effect on January 1, 2023, at the same as the California Privacy Rights Act and the Virginia Consumer Data Protection Act.

The bill tracks the California Consumer Privacy Act (CCPA) in many respects. It imposes obligations on "businesses" that meet certain thresholds and applies to data of "consumers" defined to mean residents of the State of Oklahoma.  However, the revenue threshold triggering application of the law would be annual gross revenues excess of  $10 million for Oklahoma businesses, as compared to $25 million under the CCPA.  Like the CCPA, the Oklahoma bill provides consumers with various privacy rights, including the rights of data access and deletion.The bill prohibits discrimination but allows for financial incentives subject to certain limitations. In addition, it requires reasonable security and notice at collection.  The Oklahoma bill contains a major deviation from the CCPA, however, insofar as it would require any Oklahoma business covered to obtain the consumer's opt-in consent before collecting, using or selling their personal information (a broadly defined term).  The bill defines consent as

an act that clearly and conspicuously communicates the individual's authorization of an act or practice that is made in the absence of any mechanism in the user interface that has the purpose or substantial effect of obscuring, subverting or impairing decision-making or choice to obtain consent.

HB 1602 provided for a general private right of action when it was introduced. However, the bill was amended on March 3rd to include several changes and removed the private right of action provision.

  Under the current version, administrative enforcement powers would be vested exclusively in the Oklahoma Attorney General, with fines of up to $7,500 per intentional violation and $2,500 for non-intentional violations.

The bill is now pending before the Senate. The Oklahoma legislature is set to adjourn on May 28th.  We will keep a close eye on developments and keep you informed.

Originally published March 30, 2021.

The content of this article is intended to provide a general guide to the subject matter. Specialist advice should be sought about your specific circumstances.

[View Source]
Authors
Photo of Lydia De La Torre
Lydia De La Torre
Photo of Ann J. LaFrance
Ann J. LaFrance
See More Popular Content From

Mondaq uses cookies on this website. By using our website you agree to our use of cookies as set out in our Privacy Policy.

Learn More