1
Running head: PRIVACY LAWS
Federal Privacy Laws
Federal Data Privacy Laws exist as a complex patchwork of sector-specific and mediumspecific laws, including those addressing telecommunications, health information, credit
information, financial institutions, and marketing. According to Ramirez (2020), the Federal
Trade Commission Act (15 USC 41 et seq.) oversees commercial entities to prevent unfair or
"deceptive trade practices." and does not specify the information to include in website privacy
PRIVACY LAWS
2
policies. It has the authority to regulate, enforce privacy laws, and take enforcement actions to
protect consumers.
The 2020 Consumer Data Privacy and Security Act- (CDPSA) is consistent with current
data-privacy legal frameworks and incorporates themes from the CCPA and GDPR. It learns
from some CCPA and GDPR shortcomings, being more favorable to small and medium-sized
businesses. The CDPSA provides similar individual rights and protections and attempts to reduce
the burden on small and midsize companies by exempting small businesses from certain
compliance obligations. This act does not compel small companies to comply with an
individual's rights to access, accuracy, or correction. (Kratofil, 2021)
The 2020 Children's Online Privacy Protection Act, or COPPA (15 U.S.C. 6501 et seq.),
governs the collection of information about minors. According to the Federal Trade Commission
(2020), COPPA imposes specific requirements on website operators or online service providers
for children under the age of 13; as well as operators of other websites or online service
providers who are aware of collecting personal information online from a child under the age of
13.
The 1996 Health Insurance Portability and Accountability Act (HIPAA - P.L.104-191)
governs the health information collection and ensures the legal use and disclosure of protected
health information (PHI). The Department of Health and Human Services-(HHS) regulates
HIPAA compliance. At the same time, the Office for Civil Rights (OCR) enforces it,
continuously guides healthcare developments, and is in charge of investigating HIPAA
violations.
PRIVACY LAWS
3
The Gramm Leach Bliley Act or the Financial Services Modernization Act of 1999 (15
USC 6802 et Seq) governs the collection of personal information by banks and financial
institutions. The act protects consumers' financial privacy and requires that companies that offer
consumers financial products or services such as loans, financial or investment advice, or
insurance explain their information-sharing practices to their customers and safeguard sensitive
data.
The 1970 Fair Credit Reporting Act (15 USC 1681) is a federal law that governs the
collection of credit information from consumers and their access to their credit reports. This act
addresses the fairness, accuracy, and privacy of personal data in credit reporting agencies' files
(Kagan, 2021). Its rules govern the collection and storage duration and sharing of credit
information.
References
Federal Trade Commission. (2020, July 17). How to comply with the privacy of consumer
financial information rule of the Gramm-Leach-Bliley act. Retrieved June 04, 2021, from
https://www.ftc.gov/tips-advice/business-center/guidance/how-comply-privacy-consumerfinancial-information-rule-gramm
PRIVACY LAWS
4
Kagan, J. (2021, May 24). Fair credit reporting act (FCRA). Retrieved June 04, 2021, from
https://www.investopedia.com/terms/f/fair-credit-reporting-act-fcra.asp
Kratofil, Jr., G. M., & Harding, E. L. (2021, June 2). Federal privacy Legislation UPDATE:
Consumer data privacy and Security act of 2020. Volume XI, Number 153. Retrieved June
02, 2021, from https://www.natlawreview.com/article/federal-privacy-legislation-updateconsumer-data-privacy-and-security-act-2020
Ramirez, N. (2020, November 08). Data privacy laws: What you need to know in 2020.
Retrieved June 02, 2021, from https://www.osano.com/articles/data-privacy-laws