TDPSA
Texas Data Privacy and Security Act
Texas, USA
In force since 2024
United States
Who must comply
Businesses that process or sell personal data and are not small businesses as defined by the SBA, dealing with Texas residents.
Penalties
Up to $7,500 per violation, enforced by the Texas Attorney General.
Key obligations
- Recognize universal opt-out signals
- Opt-out of targeted ads, sale and profiling
- Opt-in for sensitive data
- Privacy notice with specific disclosures
- Consumer rights handling
How ConsentX helps
Universal opt-out support
Opt-out controls
Sensitive-data opt-in
DSAR workflow
Get TDPSA ready with ConsentX
This page is a plain-English summary for general information and is not legal advice. Confirm your obligations with qualified local counsel.
How to comply with TDPSA using ConsentX
- 1
Scan your website
Run a free scan to find every cookie and tracker on your site, so you know exactly what needs consent under TDPSA.
- 2
Show a geo-aware consent banner
Add the ConsentX banner. It detects each visitor region and shows the consent experience that TDPSA requires, automatically.
- 3
Block trackers until consent
Keep non-essential cookies and trackers blocked until the visitor agrees, so nothing fires before consent.
- 4
Record tamper-evident proof
Every choice is stored as a tamper-evident consent receipt you can produce in a TDPSA audit.
- 5
Handle data requests on time
Use the built-in DSAR workflow with SLA timers to answer access, deletion and opt-out requests within the legal deadline.
Frequently asked questions
Does Texas have a revenue threshold?+
No. The TDPSA applies based on processing personal data and not being an SBA-defined small business, not a revenue number.