Connecticut - CTDPA (Connecticut Data Privacy Act)

Modified on Wed, 20 Sep, 2023 at 8:47 PM

Understanding CTDPA


The Connecticut Data Privacy Act (CTDPA), signed into law on May 10, 2022, bestows enhanced control over personal information upon Connecticut residents.


CTDPA acknowledges that entities like restaurants and cafés have unique data handling practices compared to digital advertising firms. Consequently, the CTDPA includes multiple exceptions, particularly for situations where personal data is already governed by other privacy laws like the Fair Credit Reporting Act and the Driver Privacy Protection Act.


CTDPA encompasses personal information that unveils one's racial or ethnic background, religious beliefs, physical or mental health status or diagnoses, sexual orientation, citizenship or immigration status, as well as genetic or biometric data utilized for individual identification. Additionally, it extends its protections to children's information and precise geolocation data.


If you want to know more about the different regulations you can access our article "Laws and regulations for each region"





How should be a cookie banner to comply with CTDPA?


While there is no specific information about the features of the Consent banner for Connecticut, based on our research and comparing with other regulations, illow recommends a banner with the following characteristics:


  • Include a Button to Accept Cookies: The text in the cookie banner and the button must make it clear that by clicking the button the user agrees to the deployment of cookies.
  • Include a Button to Reject Cookies: Although it does not specifically clarify a button as in other cases, we must provide an opt-out option that “takes effect immediately and is consistent.”
  • Provide Detailed Information About Cookie Use: The cookie banner should contain information about why the website uses cookies. For example, does it collect data for analytics, advertising, or social media purposes?
  • Alert the User if the Website Shares Data with Third Parties: If the website shares the data collected through cookies with third parties the cookie banner should explain this.
  • Link to the Website’s Cookie Policy: Here the website will provide further information about the cookies in use on the site, including a list of all the cookies.
  • Include a Link to the Cookie Settings: This isn’t required under GDPR as long as users have the choice to reject all cookies. However, it does have the benefit of allowing users who would otherwise reject all cookies to permit some forms of data collection. 


Observations: With illow´s GLOBAL banner, your site will be ready to comply with this regulation.



If you want to know the different types of banner cookies that you can find on our platform, access our article "Types of banners you will find on our platform"



Was this article helpful?

That’s Great!

Thank you for your feedback

Sorry! We couldn't be helpful

Thank you for your feedback

Let us know how can we improve this article!

Select at least one of the reasons
CAPTCHA verification is required.

Feedback sent

We appreciate your effort and will try to fix the article