NC State Regulations

Consumer Privacy Laws in North Carolina

Are Data Privacy Policies and Procedures Obligations confusing you?

North Carolina has several laws that protect consumer privacy. Here are some of the key consumer privacy laws in North Carolina:

1. Identity Theft Protection Act: This law requires businesses to notify consumers if their personal information has been compromised in a security breach. It also requires businesses to implement and maintain reasonable security procedures to protect consumer data.
2. Electronic Commerce Act: This law regulates the collection and use of personal information obtained through electronic commerce, such as online transactions. It requires businesses to provide clear and conspicuous notice of their data collection and sharing practices and obtain consent from consumers before collecting and sharing their personal information.
3. Protection of Social Security Numbers: North Carolina law restricts the use and disclosure of Social Security numbers by businesses, government agencies, and other organizations. It also requires businesses to take reasonable measures to protect Social Security numbers from unauthorized access or disclosure.
4. Medical Records Privacy Act: This law protects the privacy of medical records and requires healthcare providers and insurers to obtain patient consent before disclosing medical information to third parties.
5. Financial Identity Theft Protection Act: This law requires financial institutions to implement and maintain reasonable security procedures to protect consumer data and notify consumers of security breaches that may have compromised their personal information.
6. North Carolina Consumer Finance Act: This law regulates companies that offer consumer finance loans and sets requirements for the handling of
   personal information obtained from loan applicants.
7. North Carolina Online Privacy Protection Act: This law requires operators of websites or online services that collect personal information from North Carolina residents to post a privacy policy that discloses the
   types of information collected and how it will be used.
8. North Carolina Employee Fair Privacy Act: This law restricts employers from requiring or requesting access to employees’ personal social media accounts.
9. North Carolina Uniform Electronic Transactions Act: This law provides a legal framework for electronic transactions and sets requirements for the retention and authentication of electronic records.

Data Compliance Laws in North Carolina

1. North Carolina Identity Theft Protection Act: This law requires businesses and government agencies to take certain steps to protect personal information from unauthorized access or disclosure, and to notify individuals in the event of a data breach.
2. North Carolina Consumer Protection Act: This law prohibits unfair and deceptive trade practices, including those related to the collection, use, and sharing of personal information.
3. North Carolina Public Records Act: This law governs the public’s access to government records, including those containing personal information.
4. North Carolina Employee Privacy Act: This law restricts employers from accessing or using certain types of personal information about employees, such as genetic information or social security numbers.
5. General Data Protection Regulation (GDPR): This is a European Union regulation that applies to companies doing business in the EU, including those based in North Carolina.