Texas Privacy Law Compliance Readiness Calculator

ANALife Services AuthorityNational Calculator Authority›Texas Privacy Law Compliance Readiness Calculator

.calc-container { max-width: 640px; margin: 2rem 0; padding: 1.5rem; background: #fff; border: 1px solid #ddd; border-radius: 8px; box-shadow: 0 1px 3px rgba(0,0,0,0.06); font-family: system-ui, -apple-system, sans-serif; } .calc-container h3 { font-family: Georgia, serif; font-size: 1.15rem; color: #1a1a1a; margin-bottom: 1rem; padding-bottom: 0.5rem; border-bottom: 2px solid var(--ac, #3d5a80); } .calc-row { display: flex; align-items: center; gap: 0.75rem; margin-bottom: 0.75rem; flex-wrap: wrap; } .calc-row label { min-width: 160px; font-size: 0.9rem; color: #333; font-weight: 500; } .calc-row input[type="number"], .calc-row select { flex: 1; min-width: 120px; max-width: 200px; padding: 0.5rem 0.6rem; border: 1px solid #ccc; border-radius: 4px; font-size: 0.9rem; font-family: system-ui, sans-serif; color: #1a1a1a; background: #fafaf8; } .calc-row input:focus, .calc-row select:focus { outline: none; border-color: var(--ac, #3d5a80); box-shadow: 0 0 0 2px rgba(26,74,138,0.12); } .calc-row .unit { font-size: 0.82rem; color: #888; min-width: 30px; } .calc-btn { display: inline-block; margin-top: 0.5rem; padding: 0.55rem 1.5rem; background: var(--ac, #3d5a80); color: #fff; border: none; border-radius: 4px; font-size: 0.9rem; font-weight: 600; cursor: pointer; font-family: system-ui, sans-serif; } .calc-btn:hover { opacity: 0.9; } .calc-result { margin-top: 1.25rem; padding: 1rem 1.25rem; background: #f0f6fc; border-left: 3px solid var(--ac, #3d5a80); border-radius: 0 6px 6px 0; display: none; } .calc-result.visible { display: block; } .calc-result-label { font-size: 0.78rem; text-transform: uppercase; letter-spacing: 0.06em; color: #666; margin-bottom: 0.25rem; } .calc-result-value { font-size: 1.6rem; font-weight: 700; color: var(--ac, #3d5a80); } .calc-result-detail { font-size: 0.85rem; color: #555; margin-top: 0.5rem; line-height: 1.5; } .calc-note { margin-top: 1rem; font-size: 0.8rem; color: #888; font-style: italic; } .calc-grid { display: grid; grid-template-columns: 1fr 1fr; gap: 0.75rem; margin-top: 0.75rem; } .calc-grid-item { padding: 0.6rem 0.8rem; background: #f8f9fa; border-radius: 4px; border: 1px solid #eee; } .calc-grid-item .label { font-size: 0.75rem; color: #888; text-transform: uppercase; letter-spacing: 0.04em; } .calc-grid-item .value { font-size: 1.1rem; font-weight: 600; color: #1a1a1a; } @media (max-width: 720px) { .calc-row { flex-direction: column; align-items: flex-start; gap: 0.3rem; } .calc-row label { min-width: auto; } .calc-row input[type="number"], .calc-row select { max-width: 100%; width: 100%; } .calc-grid { grid-template-columns: 1fr; } } .calc-chart { margin: 1rem 0; text-align: center; } .calc-chart svg { max-width: 100%; height: auto; } .calc-chart-legend { display: flex; flex-wrap: wrap; justify-content: center; gap: 0.6rem 1.2rem; margin-top: 0.6rem; font-size: 0.8rem; color: #555; } .calc-chart-legend span { display: inline-flex; align-items: center; gap: 0.3rem; } .calc-chart-legend i { display: inline-block; width: 10px; height: 10px; border-radius: 2px; font-style: normal; } .calc-related { max-width: 640px; margin: 2rem 0 1rem; padding: 1.25rem 1.5rem; background: #f8f9fa; border: 1px solid #e8e8e8; border-radius: 8px; } .calc-related h3 { font-family: Georgia, serif; font-size: 1rem; color: #1a1a1a; margin: 0 0 0.75rem; padding-bottom: 0.4rem; border-bottom: 2px solid var(--ac, #3d5a80); } .calc-related-list { list-style: none; padding: 0; margin: 0 0 0.75rem; display: grid; grid-template-columns: 1fr 1fr; gap: 0.4rem 1.5rem; } .calc-related-list li a { font-size: 0.88rem; color: var(--ac, #3d5a80); text-decoration: none; } .calc-related-list li a:hover { text-decoration: underline; } .calc-browse-all { margin: 0.5rem 0 0; font-size: 0.9rem; font-weight: 600; } .calc-browse-all a { color: var(--ac, #3d5a80); text-decoration: none; } .calc-browse-all a:hover { text-decoration: underline; } @media (max-width: 720px) { .calc-related-list { grid-template-columns: 1fr; } }

Texas Privacy Law Compliance Readiness Calculator

Assess your organization's readiness to comply with the Texas Data Privacy and Security Act (TDPSA), effective July 1, 2024. Answer the questions below to receive a compliance readiness score and actionable guidance.

### Section 1: Applicability & Scope

Does your organization conduct business in Texas or produce products/services targeted to Texas residents?

-- Select -- Yes No

Is your organization classified as a "small business" by the U.S. Small Business Administration (SBA)?

-- Select -- Yes (SBA small business — limited TDPSA obligations) No (not an SBA small business)

Does your organization process personal data of Texas residents?

-- Select -- Yes No

Does your organization process sensitive data (racial/ethnic origin, health, biometric, geolocation, children's data, etc.)?

-- Select -- Yes No

### Section 2: Consumer Rights Mechanisms (0–5 pts each)

Right to Access: Can consumers confirm whether you process their data and request a copy?

-- Select -- Fully implemented with documented process Partially implemented Planned but not yet implemented Not implemented

Right to Delete: Can consumers request deletion of their personal data?

-- Select -- Fully implemented with documented process Partially implemented Planned but not yet implemented Not implemented

Right to Correct: Can consumers correct inaccurate personal data?

-- Select -- Fully implemented with documented process Partially implemented Planned but not yet implemented Not implemented

Right to Data Portability: Can consumers obtain their data in a portable format?

-- Select -- Fully implemented with documented process Partially implemented Planned but not yet implemented Not implemented

Right to Opt-Out: Can consumers opt out of sale of personal data, targeted advertising, and profiling?

-- Select -- Fully implemented with documented process Partially implemented Planned but not yet implemented Not implemented

Appeal Process: Do you have a process for consumers to appeal denial of their rights requests within 60 days?

-- Select -- Yes, fully documented and operational Partially in place Planned No

### Section 3: Data Governance & Security (0–5 pts each)

Privacy Notice: Do you have a publicly accessible, TDPSA-compliant privacy notice?

-- Select -- Yes, reviewed and updated for TDPSA Exists but not fully TDPSA-compliant Outdated or incomplete No privacy notice

Data Inventory: Have you mapped and inventoried all personal data you collect and process?

-- Select -- Comprehensive, current data inventory exists Partial inventory In progress No inventory

Data Processing Agreements: Do you have contracts with processors specifying TDPSA-required provisions?

-- Select -- All processors under compliant contracts Most processors covered Some processors covered No contracts in place

Security Program: Do you maintain reasonable administrative, technical, and physical data security practices?

-- Select -- Formal, documented security program in place Informal security measures exist Limited security measures No formal security program

Data Protection Assessments (DPAs/PIAs): Do you conduct assessments for high-risk processing activities (targeted advertising, sale of data, sensitive data, profiling)?

-- Select -- Formal DPA process for all required activities Conducted for some activities Planned Not conducted

Sensitive Data Consent: Do you obtain explicit consent before processing sensitive data?

-- Select -- Yes, explicit opt-in consent obtained Consent obtained but process needs improvement Planned No consent mechanism N/A — do not process sensitive data

Children's Data: Do you have safeguards for processing data of children under 13 (COPPA) and 13–17 (TDPSA)?

-- Select -- Full safeguards and consent mechanisms in place Partial safeguards Planned No safeguards N/A — do not process children's data

Employee Training: Are employees trained on TDPSA obligations and data privacy practices?

-- Select -- Regular, documented training program Ad hoc training Planned No training

### Section 4: Response Readiness

Consumer Request Response: Can you respond to consumer rights requests within 45 days (extendable by 45 days)?

-- Select -- Yes, process documented and tested Process exists but not fully tested Planned No process

Attorney General Cure Period: Are you prepared to cure violations within 30 days if notified by the Texas AG?

-- Select -- Yes, remediation plan and team in place Partially prepared Aware but not prepared Not prepared

Calculate My Compliance Score

function texCalc() { var resultDiv = document.getElementById('tex-result');

// --- Applicability Check --- var conductsBusiness = document.getElementById('tex-conducts-business').value; var smallBusiness = document.getElementById('tex-small-business').value; var processesData = document.getElementById('tex-processes-personal-data').value; var sensitiveData = document.getElementById('tex-sensitive-data').value;

if (conductsBusiness === '' || smallBusiness === '' || processesData === '' || sensitiveData === '') { resultDiv.innerHTML = 'Please complete all fields in Section 1 before calculating.

'; resultDiv.style.display = 'block'; return; }

// If not conducting business in TX or not processing personal data → likely not subject if (conductsBusiness === '0' || processesData === '0') { resultDiv.innerHTML = '' + '## ✓ TDPSA May Not Apply ' + 'Based on your answers, your organization may not be subject to the Texas Data Privacy and Security Act (TDPSA). ' + 'You do not appear to conduct business in Texas or process personal data of Texas residents.

' + 'Recommendation: Revisit this assessment if your business activities change. Monitor for updates to Texas privacy law.

' + ''; resultDiv.style.display = 'block'; return; }

// --- Collect scored fields --- var fields = [ { id: 'tex-right-access', label: 'Right to Access', weight: 1.0 }, { id: 'tex-right-delete', label: 'Right to Delete', weight: 1.0 }, { id: 'tex-right-correct', label: 'Right to Correct', weight: 1.0 }, { id: 'tex-right-portability', label: 'Right to Data Portability', weight: 1.0 }, { id: 'tex-right-opt-out', label: 'Right to Opt-Out', weight: 1.2 }, { id: 'tex-appeal-process', label: 'Appeal Process', weight: 0.8 }, { id: 'tex-privacy-notice', label: 'Privacy Notice', weight: 1.2 }, { id: 'tex-data-inventory', label: 'Data Inventory', weight: 1.0 }, { id: 'tex-dpa-contracts', label: 'Data Processing Agreements', weight: 1.0 }, { id: 'tex-security-program', label: 'Security Program', weight: 1.2 }, { id: 'tex-pia', label: 'Data Protection Assessments', weight: 1.0 }, { id: 'tex-sensitive-consent', label: 'Sensitive Data Consent', weight: 1.0 }, { id: 'tex-children-data', label: 'Children's Data Safeguards', weight: 1.0 }, { id: 'tex-training', label: 'Employee Training', weight: 0.8 }, { id: 'tex-response-timeline', label: 'Consumer Request Response', weight: 1.0 }, { id: 'tex-ag-cure', label: 'AG Cure Period Readiness', weight: 0.8 } ];

var totalWeightedScore = 0; var totalMaxWeighted = 0; var missingFields = []; var gapItems = [];

for (var i = 0; i 0) { resultDiv.innerHTML = 'Please complete all fields. Missing: ' + missingFields.join(', ') + '

'; resultDiv.style.display = 'block'; return; }

// --- Core Score Calculation --- // Weighted Compliance Score (%) = (Sum of weighted scores / Sum of max weighted scores) × 100 var complianceScore = (totalWeightedScore / totalMaxWeighted) * 100;

// Small business adjustment: TDPSA has reduced obligations for SBA small businesses // They must still honor opt-out rights and maintain security but have fewer affirmative duties var smallBizNote = ''; if (smallBusiness === '0') { // Small business — score is informational; flag reduced obligations smallBizNote = 'ⓘ Small Business Note: As an SBA-classified small business, your TDPSA obligations are reduced. ' + 'You must still honor consumer opt-out rights (sale, targeted advertising, profiling) and maintain reasonable data security. ' + 'Many affirmative controller duties (e.g., data protection assessments) may not apply. Consult legal counsel to confirm your specific obligations.

'; }

// Sensitive data flag var sensitiveNote = ''; if (sensitiveData === 'yes') { sensitiveNote = '⚠ Sensitive Data Alert: You process sensitive data. TDPSA requires explicit opt-in consent before processing. ' + 'Ensure your sensitive data consent mechanisms are fully operational and documented.

'; }

// --- Penalty Exposure Estimate --- // TDPSA: AG can seek civil penalties up to $7,500 per violation // Estimate based on score gap (illustrative, not legal advice) var penaltyRisk = ''; if (complianceScore = 90) { rating = 'Highly Compliant'; ratingColor = '#2e7d32'; } else if (complianceScore >= 75) { rating = 'Substantially Compliant'; ratingColor = '#558b2f'; } else if (complianceScore >= 55) { rating = 'Partially Compliant'; ratingColor = '#f57f17'; } else if (complianceScore >= 35) { rating = 'Minimally Compliant'; ratingColor = '#e65100'; } else { rating = 'Non-Compliant'; ratingColor = '#b71c1c'; }

// --- Gap Analysis --- var gapHtml = ''; if (gapItems.length > 0) { gapHtml = '### 📋 Gap Analysis — Priority Actions '; // Sort by score ascending (biggest gaps first) gapItems.sort(function(a, b) { return a.score - b.score; }); for (var g = 0; g ' + '## Compliance Readiness Score: ' + complianceScore.toFixed(1) + '% ' + '### Rating: ' + rating + ' ' + '' + 'Weighted Score' + totalWeightedScore.toFixed(2) + ' / ' + totalMaxWeighted.toFixed(2) + '' + 'Penalty Risk Level' + penaltyRisk + '' + 'Max Civil Penalty (per violation)$7,500 (TDPSA Sec. 541.152)' + 'AG Cure Period30 days upon written notice' + 'Effective DateJuly 1, 2024' + '' + smallBizNote + sensitiveNote + '' + gapHtml + 'This calculator provides an educational estimate only and does not constitute legal advice. Consult a qualified privacy attorney for TDPSA compliance guidance specific to your organization.

';

resultDiv.style.display = 'block'; }

#### Formula & Scoring Methodology

Weighted Compliance Score (%) =

Compliance Score (%) = [ Σ (Field Score × Field Weight) / Σ (5 × Field Weight) ] × 100

Where: Field Score = 0 (not implemented) | 1 (planned) | 3 (partial) | 5 (fully implemented) Field Weight = 0.8 – 1.2 based on regulatory criticality under TDPSA N/A fields = treated as score of 5 (not applicable = no gap)

Weights assigned: 1.2 × weight → Right to Opt-Out, Privacy Notice, Security Program (core TDPSA requirements) 1.0 × weight → All other consumer rights and governance controls 0.8 × weight → Appeal Process, Employee Training, AG Cure Readiness (supporting controls)

Rating Thresholds:

#### Assumptions & References

More Calculators

References

Related Authorities

Life Services Authority › Professional Services Authority › Trade Services Authority › United States Authority ›