Skip to main content
US Data Privacy in DSALTA covers the growing patchwork of state-level data privacy regulations across the United States, including the California Consumer Privacy Act (CCPA/CPRA), Virginia CDPA, Colorado CPA, Connecticut CTDPA, and others.

Who needs US Data Privacy compliance?

Any organization that collects personal information from US consumers, particularly those operating in or serving residents of states with active privacy legislation.

Key US privacy laws

LawStateKey Requirements
CCPA/CPRACaliforniaConsumer rights to access, delete, opt-out of sale; data minimization
VCDPAVirginiaConsumer rights, data protection assessments, opt-out rights
CPAColoradoUniversal opt-out, data protection assessments
CTDPAConnecticutConsumer rights, consent for sensitive data
TDPSATexasBroad applicability, consumer data rights

How DSALTA helps

  • Unified privacy controls covering requirements across multiple state laws
  • Privacy policy templates that address multi-state compliance
  • Data processing documentation for assessment requirements
  • Vendor management to ensure processor compliance
  • Cross-framework mapping — overlaps with GDPR privacy controls

Frequently asked questions

You need to comply with the laws of states where you do business or whose residents’ data you process. DSALTA’s unified approach covers common requirements across states.
US state privacy laws share concepts with GDPR (consumer rights, data minimization) but differ in specifics. DSALTA maps overlapping controls to reduce duplicate effort.