Can I skip updating my privacy policy and other CCPA-related documents in Arkansas? What are the requirements?

Based on the context documents, it is not clear whether the CCPA (California Consumer Privacy Act) applies to your organization or not. However, Arkansas has its own privacy laws that require public postsecondary institutions to adopt a privacy policy governing electronic communications transmitted over the institution’s computer network system that are originated or received by a faculty member, staff member, or a student ^[1.1]. The privacy policy should include provisions identifying the types of electronic communications that are not confidential, methods to be used by the institution to protect the confidentiality of personally identifiable electronic communications, procedures for releasing any confidential personally identifiable electronic communication, and any other information necessary for the institution’s faculty, staff, and students to understand their rights and obligations under the policy. The policy should be included in each institution’s student handbook and should be available on each institution’s website ^[1.1].

Therefore, it is recommended that you review Arkansas state laws and regulations to determine your organization’s specific requirements regarding privacy policies and electronic communications. It is also recommended that you consult with legal counsel to ensure compliance with all applicable laws and regulations.

Source(s):

• [1.1] Electronic communication — Privacy policy.

Jurisdiction

Arkansas

• Privacy