Privacy
Connecticut Data Privacy Act
Connecticut's CCPA-shaped privacy law. Like Colorado, recognises Global Privacy Control as a valid opt-out signal — and the AG has been actively issuing cure notices since 2023.
What it is
The Connecticut Data Privacy Act, effective 1 July 2023. Grants access, correction, deletion, portability, and opt-out rights, with opt-in consent for sensitive data and a UOOM recognition requirement (effective January 2025). Enforced by the Connecticut AG.
Why it matters
Civil penalties up to $5,000 per wilful violation under the Connecticut Unfair Trade Practices Act. The Connecticut AG has used its cure-notice power proactively against high-profile sites — privacy compliance posture is a near-term enforcement risk, not a theoretical one.
Who it applies to
Connecticut residents — applies to controllers processing 100K+ Connecticut consumers, or 25K+ where 25%+ of revenue is from selling personal data.
- Jurisdictions: United States
How WQI scores it
Web Quality Index considers this standard satisfied when all of the 4 supporting factors pass.
| # | Factor | Status |
|---|---|---|
| 46 | Cookie banner presence + CMP detection | planned |
| 47 | Privacy policy page presence | planned |
| 50 | CCPA "Do Not Sell or Share My Personal Information" link | planned |
| 51 | Cookie scan — actual cookies set on first load | planned |
0 of 4 supporting factors are currently collected. Sites where the remaining 4 haven't been measured will show as partial or unknown on this standard until the data lands.
Related standards
Standards that share factors with this one
Auto-computed from overlapping factor tickets in satisfiedBy, excluding standards already listed under "See also" above. Strong overlap suggests these standards rise and fall together when sites are scored.
Other references
- regulation Connecticut AG — CTDPA enforcement reports