Maryland Online Data Privacy Act
SB 541 / HB 567
Regulatory Snapshot: Maryland Online Data Privacy Act
Maryland Online Data Privacy Act (SB 541 / HB 567) is an enacted law in Maryland under the Data Privacy category. It was enacted on 2024-05-09 and becomes effective on 2025-10-01. Maryland currently reports 3 tracked regulations with 3 already in force, giving the state a regulatory strictness score of 48/100 relative to the national baseline. PlainRegWatch last verified this entry on 2026-03-18.
Nationally, 21 states have enacted data privacy statutes and 0 additional bills remain pending — 21 distinct jurisdictions have codified rules in this area so far. That places Maryland within a mature and broadly adopted data privacy landscape where compliance programs typically hinge on definitions in SB 541 / HB 567 itself.
Applicability under Maryland Online Data Privacy Act: 35K+ consumers, or 10K+ with data sale revenue. Penalty exposure is documented as: $10,000 first, $25,000 subsequent. AG. No cure after Oct 2027. Notable exemptions: Government, HIPAA, GLBA, nonprofits, higher ed..
Summary
Among strongest. Data minimization by default. No minor data sales.
Key Requirements
Strict minimization. No minor data sales. Purpose limitation. No targeted ads to minors.
Penalties
$10,000 first, $25,000 subsequent. AG. No cure after Oct 2027.
Applicability
35K+ consumers, or 10K+ with data sale revenue.
Exemptions
Government, HIPAA, GLBA, nonprofits, higher ed.
Frequently Asked Questions
Which states have data privacy regulations?
As of the last verification, 21 states have enacted data privacy regulations, with 0 additional bills pending across other states. Maryland is among the states that has enacted such legislation. Browse all data privacy regulations at plainregwatch.com for the complete state-by-state comparison.
When was Maryland Online Data Privacy Act enacted?
Maryland Online Data Privacy Act was enacted on 2024-05-09 and became effective on 2025-10-01. It was introduced as SB 541 / HB 567.
What are the penalties for violating Maryland Online Data Privacy Act?
$10,000 first, $25,000 subsequent. AG. No cure after Oct 2027. Note that enforcement mechanisms and penalty structures may vary. Consult the official statute and qualified legal counsel for specific compliance requirements.
Does Maryland Online Data Privacy Act apply to small businesses?
35K+ consumers, or 10K+ with data sale revenue. Many state regulations include thresholds or exemptions for smaller organizations. Review the full applicability criteria and consult legal counsel to determine your obligations.
How does Maryland compare to other states on data privacy?
Maryland has a regulatory strictness score of 48/100, based on 3 enacted regulations out of 3 tracked. Nationally, 21 states have enacted data privacy laws. Visit our state comparison page for a full ranking.
Where can I read the full text of Maryland Online Data Privacy Act?
The official text of Maryland Online Data Privacy Act (SB 541 / HB 567) is available from the Maryland legislature. PlainRegWatch links to the official source for every tracked regulation. We recommend reviewing the full statute alongside qualified legal counsel for compliance planning.
Regulation Guides
Plain-language guides to help you understand the broader regulatory landscape.
Related Federal Data
Explore federal datasets connected to state regulation and enforcement.
PlainInfluence
Federal lobbying and influence data — see who shapes state regulation
PlainSpending
Federal spending data — track enforcement budgets behind regulations
PlainGovJobs
Government workforce data — agencies enforcing state and federal rules
PlainEnviro
EPA enforcement and environmental compliance across all 50 states
Explore Regulations
Disclaimer: This summary is provided for informational purposes only and does not constitute legal advice. Regulation details may have changed since last verification (2026-03-18). Always consult official sources and qualified legal counsel for compliance guidance.
Read our methodology — how this data is sourced, computed, and verified.
Related
| Publisher | Kiznis Studio |
| Sources | Public state legislatures, IAPP, NCSL, and federal regulatory trackers |