Nevada Privacy Law: Rights & Obligations

NRS 603A (including the SB-220) amendments imposes different obligations to different actors.
Data collectors must comply with the following obligations:
Take reasonable measures to delete personal information, when the business decides it will no longer maintain the records
Implement and maintain reasonable security measures to prevent unauthorized access to personal information (PI). If a collector passes the information on to a third party, there needs to be a clause in the underlying contract that this third party takes reasonable security measures as well. 
In the case of data breach of computerized data including (non-encrypted) PI, the collector must give notification of breach to any resident of Nevada whose data was accessed without unreasonable delay. 
Operators must comply with the following obligations:
Must give notice to consumers about the information collected by the operator. This notice should be accessible. It should:
Identify the categories of collected information collected through the website /online service
Describe the process for consumer to review and request changes of covered info if such a process exists
Describe the process of how operator notifies consumer about material changes to the notice
Disclose whether a third party may collect covered information
Effective date of the notice
[ADDED BY SB-220] Must provide a designated request address for consumers to submit requests to opt out of sale. 
The request to opt-out of sale must be verified (CCPA does not require a verification of opt-out of sale requests!)
Operator should respond within 60 days. A 30-day extension is possible, if the operator determines that extension is reasonably necessary.
The information provided in this resource base and on the Datawallet website does not, and is not intended to, constitute legal advice; instead, all information, content, and materials available on this site are for general informational purposes only. Information on this website may not constitute the most up-to-date legal or other information. This website contains links to other third-party websites. Such links are only for the convenience of the reader, user or browser. No reader, user, or browser of this site should act or refrain from acting on the basis of information on this site without first seeking legal advice from counsel in the relevant jurisdiction. Only your individual attorney can provide assurances that the information contained herein – and your interpretation of it – is applicable or appropriate to your particular situation. All liability with respect to actions taken or not taken based on the contents of this site are hereby expressly disclaimed. The content on this posting is provided “AS IS;” no representations are made that the content is error-free.
​

Nevada Privacy Law - Previous

Who Does The Nevada Privacy Law Apply To?

Next - Nevada Privacy Law

Actions and Fines for Violations of the Nevada Privacy Law

Last modified 2yr ago

Copy link