A new privacy law requires companies to make specific statements about what information is collected on its website. Like California, it also requires that companies state in writing whether they respect “Do Not Track” requests.
The broad new law impacts not just Delaware-based businesses, but any company that collects PII about a Delaware resident—in other words, virtually any company that transacts business online. The Delaware Online Privacy and Protection Act goes into effect January 1st, 2016.
California already has a similar law in place, so clients may not need to change existing privacy policies. However, the new Delaware law does provide a timely opportunity to review such policies to ensure that privacy-related language is up-to-date.
The Delaware Online Privacy and Protection Act also prohibits companies from marketing certain products (alcohol, tobacco, firearms, fireworks, etc.) to minors via online channels. Finally, the Act prohibits book service providers from disclosing personal information about its users without written consent.