Ask Reggi Your Question Now
Can I collect personal information from my customers in California in Tennessee? What are the requirements?
Can I collect personal information from my customers in California in Tennessee? What are the requirements?
Based on the documents provided, there are no specific regulations in Tennessee regarding the collection of personal information from customers. However, in California, personal information should not be collected unless the need for it has been clearly established in advance and it should be appropriate and relevant to the purpose for which it has been collected. Additionally, personal information shall not be disclosed in a manner not permitted by California law or regulations [1.1][1.2][1.3].
If you are collecting personal information from customers in California, you must ensure that the information is collected for a specific purpose and that the customer has given their consent for the collection of their personal information. You must also ensure that the information is kept confidential and secure [1.1][1.2][1.3].
In Tennessee, it is prohibited to use, cause to be used, obtain, sell, transfer, or disclose protected health information to another person for the purpose of soliciting an individual for legal services without written authorization from the individual who is the subject of the information [4.1]. Violation of this part constitutes a violation of the Tennessee Consumer Protection Act of 1977, and is subject to the penalties and remedies as provided in the Tennessee Consumer Protection Act of 1977 [4.2].
In conclusion, while there are no specific regulations in Tennessee regarding the collection of personal information from customers, you must ensure that you comply with California law if you are collecting personal information from customers in California. Additionally, in Tennessee, you must obtain written authorization from the individual who is the subject of the information before using their protected health information for the purpose of soliciting legal services [4.1][4.2].
Source(s):
- [1.1] Disclosure of Information.
- [1.2] Effective Date; Contracts with Nonaffiliated Third Parties.
- [1.3] Objectives of Information Security Program.
- [4.1] Prohibited uses of protected health information for purpose of soliciting individual for legal services.
- [4.2] Violations — Investigative and enforcement authority.
Jurisdiction
Tennessee, California