When you purchase through links on our site, we may earn an affiliate commission. Here’s how it works.
Following the fall of Roe vs Wade, new concerns about the security of women's online health data have spread across the country. And, while privacy advocates are urging to ditch period tracking apps and secure online anonymity with the best VPN services, lawmakers are busy crafting a new legislation with the goal to better protect the privacy of all US citizens.
In a rare bipartisan effort, the American Data Privacy and Protection Act (ADPPA) aims to give internet users more control over their personal data. Contrary to people in Europe that have been protected from GDPR since 2018, the ADPPA will be the first comprehensive federal privacy law in the US. At the moment, just a handful of States enforce their own regulations.
An ambitious objective brings big responsibilities and burdens, though. And, if some commentators are satisfied with the current version of the proposed law, others think that it isn't enough - just yet.
Let's take a closer look at how the ADPPA seeks to protect US internet users.
As mentioned above, the American Data Privacy and Protection Act (ADPPA) marks a landmark achievement. This is because - if it becomes law - it will be the first comprehensive federal privacy law in the US to contrast the current fragmented landscape protecting internet users.
So far, the ADPPA seems to have taken the right path to tackle many issues around US citizens' online privacy.
"One of the main good things is that it will give privacy protection to individuals in the US that have never had it before," Nigel Jones - former head of the Google legal team in Europe and now co-founder of The Privacy Compliance Hub - told TechRadar.
From better transparency standards, to anti-discrimination and new cybersecurity regulations, areas of privacy many citizens want pinpointed include:
If many experts and privacy advocates expressed their support for the amended version of the bill, other commentators are worried that some provisions could fail to better protect US users.
According to the ADPPA's pre-emption principle, no States will be allowed to enforce their own regulations on the same privacy issues that the federal law will cover. This will de-facto statutes like the California's Consumer Privacy Rights Act.
For some experts, this is problematic because the ADPPA isn't strong enough to substitute existing and future state privacy laws. According to privacy advocates group the Electronic Frontier Foundation (EFF), it can also hinder the ability to update the legislation on a state level when new issues arise.
"EFF wants Congress to set a baseline for privacy protections. But the ADPPA should not trade away states' ability to react in the future to current and unforeseen problems," they wrote in a blogpost.
EFF is disappointed by the latest draft of the American Data Privacy Protection Act, or the ADPPA, a federal comprehensive data privacy bill. While we are still digesting the 132-page version released yesterday, we have three initial objections. https://t.co/1d3S8Qsk05July 20, 2022
Other worries are around the private right of action provision. At the moment, the ADPPA rules that individuals cannot sue companies for the first two years that the act is enforced. What's more, "the bill has a number of unnecessary and disruptive procedural hurdles before a suit can go forward," wrote again the EFF. "Each additional roadblock makes this remedy less accessible."
Critics have also sparked over the shift of the regulator body for privacy related matters from the Federal Communications Commission (FCC) to the Federal Trade Commission (FTC). The first was indeed the organisation which proposed huge fines in 2020 against some of the country’s biggest telecommunications companies guilty of illegally selling users' location data. As Vice reported, this move might have the side effect of wiping out FCC privacy protections.
Despite these limitations, Jones thinks that the prospect of a federal privacy law in the US is still a very good thing.
"People will always argue whether the move has been sufficient, whether the legislation has gone far enough to protect individuals. But, if this legislation is passed, individuals in the US will be in a way better position than they are today, a way better position than they have been for a very long time," he said.
After successfully advancing from the House Committee on Energy & Commerce, the House will be the next step. However, for the bill to pass it will also need to overcome any scepticism in the Senate.
With the midterms elections on the way, the process throughout the two parliamentary chambers might be slowed down; a delay that will weigh on US citizens' privacy, once again.
That's why around 50 organisations have signed an open letter to urge Speaker of the US House of Representatives Nancy Pelosi to vote the ADPPA on the House floor as soon as possible. These include privacy advocates Access Now, Electronic Privacy Information Center (EPIC), Center for Democracy & Technology (CDT) as well as Swiss-based cybersecurity firm Proton, provider of the top Proton VPN service.
The #ADPPA will upend the status quo for how businesses use your online data, creating strict limits on data collection & use. We joined over 45 orgs in a letter to Rep. Nancy Pelosi, urging her to bring the #ADPPA to a House vote. #privacyRead more: https://t.co/zclqqd1c7jAugust 25, 2022
"We will continue to work to improve the bill as it moves to the floor and concerns are considered, however we strongly believe that H.R. 8152 [ADPPA] will provide long overdue and much needed protections for individuals and communities," they wrote.
"The time is now to pass a comprehensive federal privacy and civil rights law. We fear that a failure to move the bill in this Congress will forestall progress on this issue for years to come."
