CCPA/CPRA: California Consumer Privacy Act and California Privacy Rights Act - Comprehensive state privacy laws that often set de facto national standards for data privacy compliance in the US
GDPR: General Data Protection Regulation - While EU-based, it affects US companies handling data of EU residents, requiring strict data protection and privacy measures
HIPAA: Health Insurance Portability and Accountability Act - Federal law governing privacy and security of medical information and healthcare data
GLBA: Gramm-Leach-Bliley Act - Federal law requiring financial institutions to explain their information-sharing practices and protect sensitive data
FERPA: Family Educational Rights and Privacy Act - Federal law protecting the privacy of student education records
COPPA: Children's Online Privacy Protection Act - Federal law imposing requirements on operators of websites or online services directed to children under 13
FCRA: Fair Credit Reporting Act - Federal law regulating the collection, dissemination, and use of consumer credit information
FTC Act Section 5: Federal Trade Commission Act Section 5 - Prohibits unfair or deceptive practices affecting commerce, including privacy and data security practices
VCDPA: Virginia Consumer Data Protection Act - Comprehensive state privacy law providing Virginia residents with data privacy rights
CPA: Colorado Privacy Act - State law establishing privacy rights for Colorado residents and obligations for businesses processing their personal data
UCPA: Utah Consumer Privacy Act - State privacy law providing Utah residents with certain rights regarding their personal data
CTDPA: Connecticut Data Privacy Act - State law establishing privacy rights for Connecticut residents and requirements for businesses processing their data
PCI DSS: Payment Card Industry Data Security Standard - Industry security standard for organizations that handle credit card data
