Consumer data protection and providing a penalty. (FE)
The passage of AB172 will significantly reshape data privacy laws within the state, imposing strict requirements on organizations that control or process large volumes of consumer personal data. Controllers are required to conduct data protection assessments and respond to consumer requests without undue delay, with penalties of up to $10,000 for violations. This places a stronger emphasis on consumer rights in the digital age, aligning state laws with emerging national standards on data protection. Moreover, local governments are preempted from enacting their own regulations on data protection, centralizing authority under state law.
Assembly Bill 172 proposes comprehensive measures for the protection of consumer data in Wisconsin. It establishes strict regulations governing how businesses, referred to as 'controllers', handle personal data, mandating transparency and accountability. Under the bill, consumers are granted essential rights regarding their personal information, including the ability to confirm if their data is being processed, to request corrections, to delete their data, and to opt-out of targeted advertising and data sales. The bill recognizes that personal data includes any information linked to an individual, with specific stipulations for the handling of sensitive data.
While AB172 aims to enhance consumer data protections, it has sparked discussions regarding the balance of regulatory measures and corporate responsibility. Proponents argue that the bill provides much-needed consumer rights in an age where data breaches and privacy invasions are prevalent. Critics, however, express concerns over the potential burden placed on businesses, particularly small enterprises, who may find compliance difficult and costly. Additionally, the preemption of local regulations raises questions about the ability of municipalities to address unique local consumer needs and protection strategies.