Plain English Summary
This bill creates a Consumer Privacy Act for North Carolina that gives residents the right to access, delete, and control their personal data held by large companies. It applies to businesses with $25 million or more in annual revenue that process data on 100,000+ consumers, with various exemptions for healthcare providers, government entities, nonprofits, and financial institutions. The Attorney General enforces violations with a 45-day cure period before penalties up to $7,500 per violation can be imposed.
Arguments in Favor
Supporters argue this law protects North Carolina residents' privacy by requiring transparency about data collection and giving consumers control over their personal information. It addresses concerns about companies selling consumer data for targeted advertising and provides meaningful enforcement through the Attorney General. The bill includes reasonable thresholds to avoid burdening small businesses while protecting the most vulnerable, including special protections for children and sensitive data like health and biometric information.
Arguments Against
Opponents may contend the law creates significant compliance costs for businesses, particularly those near the $25 million revenue threshold, potentially reducing competitiveness and innovation. Some argue the broad definitions of personal data and processing activities could be burdensome to implement, and that the 45-day response deadline may be unrealistic for complex requests. Businesses might also be concerned about liability exposure and argue that federal privacy legislation would be more efficient than state-by-state requirements.
AI-generated analysis based on bill text. Always verify with official sources at ncleg.gov. This is not legal or political advice.
