Privacy & Information Security Law Blog

On May 30, 2025, the Texas legislature passed S.B. 1343 (the “Bill”), which amends the Texas Data Broker Act (the “Act”) to impose new notice and registration obligations on data brokers. The Bill now awaits signature by Texas Governor Greg Abbott.

The Act, which came into effect on September 1, 2023, currently requires data brokers to provide a clear, readily accessible notice on their website or mobile application that (1) states the entity is a data broker and (2) contains language provided by the Texas Secretary of State. The Bill amends the Act to require data brokers to also disclose in the notice how consumers can exercise their privacy rights under the Texas Data Privacy and Security Act.

The Bill further amends the Act to include additional content requirements for data broker registration statements submitted to the Texas Secretary of State. The Act currently requires data brokers to include the following in their registration statements: (1) the legal name of the data broker; (2) a contact person and the primary physical address, email address, telephone number, and website address of the data broker; (3) a description of the categories of data the data broker processes and transfers; (4) a statement of whether or not the data broker implements a purchaser credentialing process; (5) if the data broker has actual knowledge that the data broker possesses personal data of a known child: (A) a statement detailing the data collection practices, databases, sales activities, and opt-out policies that are applicable to the personal data of a known child; and (B) a statement on how the data broker complies with applicable federal and state law regarding the collection, use, or disclosure of personal data from and about a child on the Internet; and (6) the number of security breaches the data broker experienced during the preceding year and the total number of consumers affected by each breach. The Bill amends the Act to require that the registration statement also include a link to a page on the data broker’s website that prominently displays specific instructions on how consumers may exercise their privacy rights under the Texas Data Privacy and Security Act.

If signed by the Governor, the amendments to the Act will take effect September 1, 2025.