Legal Compliance: New Hampshire Data Privacy Act (“NHDPA”)

Home » Compliance Guides & Checklists » Privacy Compliance Solutions » New Hampshire Data Privacy Act (“NHDPA”)

The New Hampshire Data Privacy Act (“NHDPA”) establishes operational privacy compliance requirements governing how organizations collect, use, disclose, manage, and operationalize personal data involving New Hampshire residents.

The law introduces obligations involving consumer rights, targeted advertising controls, sensitive data governance, vendor oversight, privacy disclosures, and operational privacy management. The NHDPA became effective January 1, 2025.

Operational Focus Areas.

Organizations evaluating New Hampshire privacy compliance obligations should pay particular attention to:

Consumer rights and request workflows,
Sensitive data consent obligations,
Profiling and targeted advertising governance,
Operational controls surrounding opt-out requests,
Vendor and processor oversight,
Privacy notice alignment,
Operational governance procedures, and
Documentation management practices.

Organizations Commonly Use These Resources To:

Evaluate applicability and threshold requirements,
Operationalize consumer rights handling,
Align consent and disclosure practices,
Coordinate cross-functional governance,
Support audit and regulator response readiness, and
Maintain defensible privacy compliance operations.

CLIClaw’s operational compliance resources are designed to support operational compliance implementation and governance planning. Organizations should evaluate their specific business practices, technologies, data environments, and operational risks when implementing privacy compliance programs.