47-18-3203(a)(2)(C)—47-18-3203(a)(2)(C)
>Control Description
Delete personal information provided by or obtained about the consumer. A controller is not required to delete information that it maintains or uses as aggregate or de-identified data; provided, that such data in the possession of the controller is not linked to a specific consumer. A controller that obtained personal information about a consumer from a source other than the consumer is in compliance with a consumer's request to delete such personal information by:
>Cross-Framework Mappings
Ask AI
Configure your API key to use AI features.