CTDPA
Connecticut Data Privacy Act
Connecticut, USA
In force since 2023
United States
Who must comply
Controllers processing data of 100,000+ Connecticut consumers, or 25,000+ while deriving 25% of revenue from selling data.
Penalties
Enforced by the Connecticut Attorney General under the state's unfair trade practices act.
Key obligations
- Recognize universal opt-out signals
- Opt-out of targeted ads, sale and profiling
- Opt-in for sensitive data
- Privacy notice
- Honor consumer rights
How ConsentX helps
Universal opt-out signal support
Opt-out controls
Sensitive-data opt-in
DSAR and evidence
Get CTDPA ready with ConsentX
This page is a plain-English summary for general information and is not legal advice. Confirm your obligations with qualified local counsel.
How to comply with CTDPA using ConsentX
- 1
Scan your website
Run a free scan to find every cookie and tracker on your site, so you know exactly what needs consent under CTDPA.
- 2
Show a geo-aware consent banner
Add the ConsentX banner. It detects each visitor region and shows the consent experience that CTDPA requires, automatically.
- 3
Block trackers until consent
Keep non-essential cookies and trackers blocked until the visitor agrees, so nothing fires before consent.
- 4
Record tamper-evident proof
Every choice is stored as a tamper-evident consent receipt you can produce in a CTDPA audit.
- 5
Handle data requests on time
Use the built-in DSAR workflow with SLA timers to answer access, deletion and opt-out requests within the legal deadline.
Frequently asked questions
Is Connecticut's law similar to Colorado's?+
Yes. CTDPA follows the same opt-out plus sensitive-data opt-in model and requires universal opt-out recognition.