Oregon Privacy & Security Compliance Guide

🚨 Oregon Consumer Privacy Act (OCPA) - Effective January 1, 2025

January 1, 2025

Covers businesses controlling/processing 100,000+ Oregon consumers' data

🌲 OREGON: STRICTEST OPT-IN CONSENT REQUIREMENTS

Silicon Forest Tech Hub Impact: Intel, Nike, Columbia Sportswear headquarters face immediate OCPA compliance obligations affecting supply chain data flows.

Unique OCPA Features:
• Explicit opt-in for ALL sensitive data (not just opt-out)
• Covers de-identified data restrictions
• Required privacy assessments before new processing
• Stricter than CCPA on third-party sharing

Cannabis Industry Alert: Oregon's legal cannabis businesses must navigate OCPA alongside federal restrictions on data handling - unique compliance challenge.

Portland Progressive Enforcement: Oregon AG expected to prioritize tech companies and data brokers in early enforcement actions. Environmental data and outdoor activity tracking apps particularly scrutinized.

Oregon by the Numbers

4.2 million

Population

85,000+

Businesses Affected

67

Recent Data Breaches

$$7,500 per violation

Per Violation Fine

Who Must Comply in Oregon?

Oregon Consumer Privacy Act (OCPA) applies to businesses that:

  • Process personal data of Oregon residents
  • Meet revenue or data volume thresholds
  • Sell products/services to Oregon consumers
  • Have physical or digital presence in Oregon

Oregon-Specific Requirements

OCPA requires explicit opt-in consent for sensitive data, comprehensive vendor oversight, and data protection impact assessments. Unique provisions for de-identified data use.

Recent Oregon Privacy & Security Cases

Oregon DHS breach (2024) - 750,000 records

Portland Public Schools ransomware (2023) - $6.8M cost

Nike third-party breach (2024) - Oregon customers affected

Major Oregon Business Centers

Key cities where privacy compliance is critical for business success:

  • Portland
  • Eugene
  • Salem
  • Gresham
  • Hillsboro

Test Your Oregon Website's Privacy & Security Compliance

Don't wait for regulators or hackers. Check your compliance status now.

Free Privacy & Security Scan →