Documents from the Rhode Island Data Transparency and Privacy Protection Act.
Rhode Island has enacted the Rhode Island Data Transparency and Privacy Protection Act (RIDTPPA), aimed at enhancing consumer data rights and protecting privacy, particularly regarding genetic data. Approved on June 29, 2024, the law establishes new obligations for companies handling personal data and empowers consumers to request deletion of their data. The law’s implementation date is set for January 1, 2026, amidst growing concerns over genetic data security highlighted by the bankruptcy of 23andMe.
Rhode Island has officially enacted the Rhode Island Data Transparency and Privacy Protection Act (RIDTPPA), a significant legislation aiming to enhance consumer data rights and privacy protections, particularly in light of increasing worries regarding the safety of genetic data. The Act was approved on June 29, 2024, following its transmittal back to the legislature by Governor Daniel McKee without a signature. The provisions of the RIDTPPA are set to come into effect on January 1, 2026.
The RIDTPPA establishes a framework applicable to various entities, though it provides specific exemptions. Notably exempted are financial institutions and data covered by the Gramm-Leach-Bliley Act, entities subject to the Health Insurance Portability and Accountability Act (HIPAA), nonprofit organizations, and certain airlines processing personal data.
Under the Act, companies, referred to as ‘controllers,’ are required to meet several obligations to protect consumer data. These include:
The legislation grants consumers critical rights concerning their personal information. Consumers will now be able to:
However, the law does not provide individuals with a private right of action. Enforcement will be exclusively handled by the Rhode Island Attorney General, with penalties for violations ranging from $100 to $500 per offense.
The enactment of the RIDTPPA comes amid heightened concerns surrounding the security of genetic data following the recent bankruptcy of the genetic testing company 23andMe. The company, previously valued at $6 billion, filed for bankruptcy in March 2024, affecting the genetic data of over 15 million customers. In light of this situation, attorneys general from over a dozen states have advised 23andMe users to delete their data due to privacy fears.
Despite 23andMe’s assurances that bankruptcy will not impact how it manages sensitive information, experts warn that a potential new ownership could lead to changes in data privacy policies, raising the risk of data misuse. Current federal protections for genetic data are deemed insufficient, particularly as they do not cover direct-to-consumer companies like 23andMe.
The Genetic Information Nondiscrimination Act (GINA), enacted in 2008, protects against discrimination based on genetic information but does not extend to non-health-related entities like life insurance companies. While recent state laws aim to regulate consent for the use or sharing of genetic data and allow for rights to delete data, experts argue that these measures fall short of effective consumer protection.
As of now, at least 14 states have passed laws that regulate direct-to-consumer genetic testing companies. Although these laws introduce various improvements, concerns regarding their comprehensiveness and enforcement persist. States like California have established more robust genetic privacy laws which offer protections beyond those provided by GINA. Florida has specifically made it a felony to use genetic information without consent.
The legislative landscape surrounding genetic data privacy is evolving. Ongoing efforts aimed at tightening protections reflect a growing public awareness and concern over data security. As technological advancements continue, state lawmakers are increasingly focused on enhancing regulations to safeguard personal data in all its forms.
News Summary Rhode Island health insurers have proposed historic premium rate hikes for 2026, with…
News Summary Wright's Dairy Farm, a long-standing family business, has officially opened a new creamery…
News Summary Rhode Island's publicly traded companies are experiencing mixed stock performances due to ongoing…
News Summary Rhode Island's luxury real estate market is thriving as Mott & Chace Sotheby's…
News Summary The Department of Homeland Security (DHS) has announced the termination of the Temporary…
News Summary Thousands of motorists were stranded for over eight hours on the West Virginia…