Texas Data Privacy and Security Act
HB 4
Regulatory Snapshot: Texas Data Privacy and Security Act
Texas Data Privacy and Security Act (HB 4) is an enacted law in Texas under the Data Privacy category. It was enacted on 2023-06-18 and becomes effective on 2024-07-01. Texas currently reports 5 tracked regulations with 5 already in force, giving the state a regulatory strictness score of 69/100 relative to the national baseline. PlainRegWatch last verified this entry on 2026-03-18.
Nationally, 21 states have enacted data privacy statutes and 0 additional bills remain pending — 21 distinct jurisdictions have codified rules in this area so far. That places Texas within a mature and broadly adopted data privacy landscape where compliance programs typically hinge on definitions in HB 4 itself.
Applicability under Texas Data Privacy and Security Act: Any entity in TX processing personal data. No revenue threshold. Penalty exposure is documented as: $7,500/violation. AG with 30-day cure (sunsets 2026). Notable exemptions: Small businesses (SBA), HIPAA, GLBA, nonprofits, state agencies..
Summary
Broadest applicability — no revenue or consumer count thresholds.
Key Requirements
Full consumer rights. Universal opt-out. Data protection assessments. Purpose limitation and minimization.
Penalties
$7,500/violation. AG with 30-day cure (sunsets 2026).
Applicability
Any entity in TX processing personal data. No revenue threshold.
Exemptions
Small businesses (SBA), HIPAA, GLBA, nonprofits, state agencies.
Frequently Asked Questions
Which states have data privacy regulations?
As of the last verification, 21 states have enacted data privacy regulations, with 0 additional bills pending across other states. Texas is among the states that has enacted such legislation. Browse all data privacy regulations at plainregwatch.com for the complete state-by-state comparison.
When was Texas Data Privacy and Security Act enacted?
Texas Data Privacy and Security Act was enacted on 2023-06-18 and became effective on 2024-07-01. It was introduced as HB 4.
What are the penalties for violating Texas Data Privacy and Security Act?
$7,500/violation. AG with 30-day cure (sunsets 2026). Note that enforcement mechanisms and penalty structures may vary. Consult the official statute and qualified legal counsel for specific compliance requirements.
Does Texas Data Privacy and Security Act apply to small businesses?
Any entity in TX processing personal data. No revenue threshold. Many state regulations include thresholds or exemptions for smaller organizations. Review the full applicability criteria and consult legal counsel to determine your obligations.
How does Texas compare to other states on data privacy?
Texas has a regulatory strictness score of 69/100, based on 5 enacted regulations out of 5 tracked. Nationally, 21 states have enacted data privacy laws. Visit our state comparison page for a full ranking.
Where can I read the full text of Texas Data Privacy and Security Act?
The official text of Texas Data Privacy and Security Act (HB 4) is available from the Texas legislature. PlainRegWatch links to the official source for every tracked regulation. We recommend reviewing the full statute alongside qualified legal counsel for compliance planning.
Regulation Guides
Plain-language guides to help you understand the broader regulatory landscape.
Related Federal Data
Explore federal datasets connected to state regulation and enforcement.
PlainInfluence
Federal lobbying and influence data — see who shapes state regulation
PlainSpending
Federal spending data — track enforcement budgets behind regulations
PlainGovJobs
Government workforce data — agencies enforcing state and federal rules
PlainEnviro
EPA enforcement and environmental compliance across all 50 states
Explore Regulations
Disclaimer: This summary is provided for informational purposes only and does not constitute legal advice. Regulation details may have changed since last verification (2026-03-18). Always consult official sources and qualified legal counsel for compliance guidance.
Read our methodology — how this data is sourced, computed, and verified.
Related
| Publisher | Kiznis Studio |
| Sources | Public state legislatures, IAPP, NCSL, and federal regulatory trackers |