SecurePrivacy Logo

Texas Data Privacy and Security Act (TDPSA)

View Law Text
Maximum Fine
$7,500 per violation
Scope
State
Regulator
AG
Status
Active

Need Help with Texas Data Privacy and Security Act (TDPSA) Compliance?

Get expert guidance on implementing TDPSA requirements and ensuring ongoing compliance for your organization.

Get Expert Help

Overview

The Texas Data Privacy and Security Act establishes comprehensive privacy rights for Texas residents and obligations for businesses processing personal data.

Key Facts

  • Comprehensive privacy law
  • Enforced by Texas Attorney General
  • Includes consumer rights and business obligations
  • Focus on reasonable security measures
  • Notice and cure period provided

Key Principles

Consumer Rights

Rights granted to Texas residents under TDPSA.

Requirements

  • Right to access
  • Right to delete
  • Right to correct
  • Right to data portability
  • Right to opt-out of targeted advertising
  • Right to opt-out of sales

Examples

  • Access request procedures
  • Deletion mechanisms
  • Correction processes
  • Data portability formats
  • Opt-out systems

Data Security

Requirements for protecting sensitive personal information.

Requirements

  • Reasonable security procedures
  • Employee training
  • Vendor management
  • Incident response
  • Regular assessments

Examples

  • Security policies
  • Training programs
  • Vendor contracts
  • Incident plans

Transparency

Disclosure requirements for businesses.

Requirements

  • Privacy notice requirements
  • Processing disclosures
  • Rights information
  • Sharing practices
  • Security measures

Examples

  • Privacy policies
  • Notice updates
  • Rights notifications
  • Security documentation

Compliance Requirements

Privacy Notice Requirements

Required disclosures in privacy notices.

Implementation Steps

  • Identify required disclosures
  • Draft clear notices
  • Include rights information
  • Document sharing practices
  • Regular updates

Required Documentation

  • Privacy policies
  • Notice templates
  • Update procedures
  • Review records
  • Training materials

Consumer Request Handling

Procedures for handling consumer rights requests.

Implementation Steps

  • Establish request procedures
  • Implement verification methods
  • Set response timelines
  • Train staff
  • Document responses

Required Documentation

  • Request procedures
  • Verification methods
  • Response templates
  • Training materials
  • Request logs

Data Security

Requirements for protecting personal data.

Implementation Steps

  • Implement security measures
  • Train employees
  • Manage vendors
  • Monitor compliance
  • Regular reviews

Required Documentation

  • Security policies
  • Training records
  • Vendor agreements
  • Audit logs
  • Review reports

Enforcement & Penalties

Attorney General Enforcement

The Texas Attorney General enforces TDPSA.

Penalty Categories

Civil Penalties
Up to $7,500 per violation
For each violation after notice
Injunctive Relief
Varies
Court orders to cease violations

Example Cases

Example Case 1
$37,500
2024 - Multiple violations after notice
Example Case 2
$22,500
2024 - Failure to implement required measures