Privacy Laws in North Dakota: What You Need to Know

North Dakota takes a sectoral approach to data privacy, relying on targeted laws rather than a single comprehensive statute. While the state lacks a law equivalent to California's CCPA or Virginia's VCDPA, North Dakota residents still have important protections — and understanding them is the first step to safeguarding your personal data.

Does North Dakota Have a Comprehensive Privacy Law?

No. As of 2026, North Dakota has not enacted a comprehensive consumer data privacy law. The state does not give residents an automatic right to demand that businesses disclose, delete, or stop selling their personal data in the way that states like California, Colorado, or Connecticut do.

However, with 20 states now having comprehensive privacy laws in effect, pressure is building on remaining states to follow suit. North Dakota's legislature has considered privacy-related proposals in recent sessions, and the national trend suggests it may eventually adopt broader protections.

North Dakota's Key Privacy Protections

Data Breach Notification Law (Chapter 51-30)

North Dakota's breach notification law is one of the stronger aspects of the state's privacy framework. Key provisions include:

• Notification timeline: Companies must notify affected individuals "in the most expedient time possible and without unreasonable delay" — a higher standard than states using only "without unreasonable delay"
• Attorney General notification: Any breach affecting more than 250 individuals must be reported to the North Dakota Attorney General
• Scope: Applies to any person or business that owns or licenses computerized data containing personal information of North Dakota residents
• Law enforcement exception: Notification may be delayed if consistent with legitimate law enforcement needs

Credit Security Freeze (Chapter 51-33)

North Dakota law allows residents to place a security freeze on their credit reports at no cost. This prevents creditors from accessing your credit report, which stops most fraudulent new account openings. Key features:

• Free to place and lift
• Must be placed with each of the three major credit bureaus separately
• Can be temporarily lifted for legitimate credit applications using a PIN
• Provides one of the strongest defenses against identity theft

Identity Theft Criminal Statutes

North Dakota has criminal penalties for identity theft and fraud. Under state law, using another person's identifying information without consent to obtain anything of value is a criminal offense carrying potential felony charges.

Social Security Number Protection

The state restricts how businesses can use and display Social Security numbers, limiting the casual exposure of this critical identifier.

Federal Laws That Protect North Dakota Residents

In the absence of comprehensive state legislation, federal laws fill important gaps:

• Fair Credit Reporting Act (FCRA) — Regulates how consumer reporting agencies collect, share, and use your information. Gives you the right to dispute inaccurate information and limits who can access your credit report
• Health Insurance Portability and Accountability Act (HIPAA) — Protects your health information from unauthorized disclosure
• Family Educational Rights and Privacy Act (FERPA) — Protects student education records
• Gramm-Leach-Bliley Act (GLBA) — Requires financial institutions to explain their data-sharing practices and safeguard sensitive data
• Children's Online Privacy Protection Act (COPPA) — Restricts collection of personal information from children under 13

How to Protect Your Privacy in North Dakota

Opt Out of Data Brokers Voluntarily

Even without a state law compelling them, most data brokers allow opt-out requests. Major people-search sites like Spokeo, BeenVerified, Whitepages, and TruePeopleSearch all have removal procedures. The challenge is that there are over 100 such sites, and data tends to reappear after removal.

Freeze Your Credit

Take advantage of North Dakota's credit freeze law. Place freezes at all three major bureaus:

1. Equifax — Online, by phone, or by mail
2. Experian — Online or by phone
3. TransUnion — Online, by phone, or by mail

Monitor Your Breach Exposure

North Dakota's relatively strong breach notification law means you should receive alerts if your data is compromised. However, be proactive — check HaveIBeenPwned.com regularly and sign up for dark web monitoring to catch exposures that might slip through the cracks.

Limit Public Records Exposure

Property records, court filings, and voter registration data are all sources that data brokers mine. Consider:

• Using a trust or LLC for property ownership
• Requesting redaction of sensitive identifiers from court documents
• Using a P.O. box where possible for public-facing registrations

Will North Dakota Get a Comprehensive Privacy Law?

The trend is clear: more states are adopting comprehensive privacy legislation each year. In 2026 alone, Indiana, Kentucky, and Rhode Island's laws took effect. Factors that may influence North Dakota's trajectory include:

• Growing public awareness of data broker practices
• Increasing number of data breaches affecting residents
• National momentum toward comprehensive privacy legislation
• Potential federal privacy law that could set a national baseline

How PrivacyOn Protects North Dakota Residents

For North Dakota residents navigating privacy protection without comprehensive state law, PrivacyOn provides the automated, persistent monitoring that fills the gap. The service scans 100+ data broker sites for your personal information, submits removal requests on your behalf, and continuously monitors for reappearing data. With dark web monitoring included, you'll know immediately if your information surfaces in a breach — complementing North Dakota's notification requirements with proactive detection.

Plans start at $8.33/month with family coverage for up to 5 people, providing the comprehensive protection that North Dakota's current legal framework doesn't yet guarantee on its own.