The "Community Privacy and Safety Act" introduces comprehensive regulations for online service providers in New Mexico concerning consumer data management. The bill mandates that these entities set default privacy settings to the highest level, provide transparent privacy information, and implement strong data security measures. It includes specific protections for minors, such as disabling contact from unknown users and limiting notifications during certain hours. Additionally, the act prohibits practices like default consumer profiling and the processing of personal data without explicit consent, particularly for sensitive information and precise geolocation data.

The legislation enhances consumer rights by allowing individuals to opt-in for data processing and ensuring their privacy preferences are honored. It bans the use of manipulative design practices, known as "dark patterns," that coerce users into sharing excessive personal information. Consumers are granted rights to access, correct, and delete their data, with covered entities required to respond to requests within thirty days. The bill also establishes penalties for violations, including civil fines, and mandates the state department of justice to create implementation rules and report on the Act's effectiveness annually. Overall, the Community Privacy and Safety Act aims to bolster consumer protections in the digital realm while ensuring compliance with existing privacy laws.