Last updated: November 28, 2019


Quite a few activists, legislators, lawyers and other professionals do not agree with the current state of privacy laws in the U.S., namely the fact that states are trying to pass their own laws. Many are arguing that a federal privacy law that encompasses all states is the better way to go as it would reduce the confusion and expense of complying. Thus, a few representatives have been proposing federal privacy bills. Currently, there is no overarching privacy law in the U.S. and these representatives hope to change that. 

At Termageddon, we keep track of these bills for you and update your Privacy Policies when bills become law. Here is our tracker of the current proposed federal privacy bills. All of the bills noted would affect the disclosures in a Privacy Policy and business obligations. 

Please note that this chart does not include bills that are dead nor does it include bills that do not deal with the subject matter that pertains to our customers. For example, a bill has been proposed that deals with facial recognition. We have not included this bill in our tracker since it’s not relevant to our customers. 

We will update this Federal Privacy Law Tracker when bills are proposed, die or become law. 

Federal privacy bill tracker comparing each proposed bill in the US

We classified the bills into a chart to make it all easier to understand. Here is an explanation of the factors against which each bill is weighed: 

  • Privacy Policy changes: this bill would require changes to the Privacy Policies of companies that it applies to; 
  • Enforced by the FTC: this bill is enforced primarily by the Federal Trade Commission. 
  • Overrides state laws: this bill would supersede any state laws that govern privacy. For example, in California, businesses would have to comply with the federal law and not the CCPA; 
  • Consumers can sue: this bill allows consumers to sue the business if they violate this law. Note that some of these bills allow consumers to sue if their private information was breached but our privacy tracker does not note this as we’re a Privacy Policy company, not a breach mitigation company; 
  • Right to access data: consumers have the right to see the specific pieces of data that the company has collected about them; 
  • Right to delete data: consumers have the right to request that the business delete their personal data; 
  • Right to correct data: consumers have the right to request that the business correct their incorrect data or complete their incomplete data; 
  • Right to opt out: consumers have the right to say no to the sharing or selling of their data; 
  • Right to portability: consumers have the right to receive their personal data that the business has collected on them in an electronic, commonly-used, machine structured format;
  • Audit requirement: the bill would require the business to have a third party audit of its privacy practices and compliance; 
  • Prohibits discrimination: the bill prohibits businesses from discriminating against consumers that exercise their rights by charging higher prices or by providing inferior quality service or products. 


As the proposed bills are always changing, make sure to check this post often to keep up to date! Or don’t, we’ll update your policies automatically for you when the bills become law. 


Protect yo’ self, 

Team Termageddon