The Arkansas Digital Responsibility, Safety, and Trust Act is designed to enhance personal privacy protections for residents in the digital landscape. It introduces a new chapter in the Arkansas Code that emphasizes privacy as a fundamental right and addresses the risks associated with the collection and dissemination of personal information, particularly in the context of advanced technologies like artificial intelligence and smart devices. The Act establishes a framework for responsible data stewardship, requiring organizations to protect personal data and obtain consumer consent for data processing. It also introduces definitions for key terms related to privacy and data protection, such as "algorithmic discrimination" and "biometric data," and mandates that high-risk AI systems undergo impact assessments to prevent misuse.

The bill outlines specific consumer rights, allowing individuals to access, correct, delete, and opt out of certain data processing activities. It requires businesses, referred to as "controllers," to maintain records of deletion requests and respond to consumer inquiries within a specified timeframe. Additionally, the legislation prohibits the use of "dark patterns" in user interfaces and mandates that controllers conduct data protection assessments. The Attorney General is granted enforcement authority to oversee compliance and address violations, with most provisions of the bill set to take effect on January 1, 2026. Overall, the Act aims to create a safer digital environment for Arkansans by establishing clear guidelines for data handling and consumer rights.