The "Personal Data Privacy Act" is a proposed legislation in Michigan designed to enhance consumer privacy rights by establishing clear regulations for the collection, processing, sale, sharing, and retention of personal data. The bill mandates that entities provide transparent notices to consumers and introduces a universal opt-out mechanism, while prohibiting certain practices related to personal data handling. It outlines the responsibilities of data brokers, requiring them to register with the attorney general and provide detailed information about their data practices. The act also delineates consumer rights, allowing individuals to confirm, correct, delete, and obtain copies of their personal data, as well as opt out of targeted advertising and data sales.

Additionally, the bill emphasizes the importance of secure communication channels for consumers to submit data requests and mandates compliance within specified timeframes. It prohibits the retention of personal data longer than necessary and reinforces protections for sensitive data, particularly for minors. The legislation includes provisions for civil sanctions against non-compliant entities and establishes a consumer privacy fund to support enforcement activities. Notably, the bill prohibits the use of geofences near mental health and reproductive health facilities for tracking consumer health data, and it grants the attorney general exclusive enforcement authority over the act, with no private right of action allowed. The act is set to take effect one year after its enactment.