One Liberty Place | 1650 Market Street | Suite 2900 | Philadelphia, PA 19103 (215) 680-8136
data compliance

Information Governance Alert: Have you factored 2025 into your compliance plan?

As the patchwork of state privacy and recordkeeping laws continues to expand, companies operating in multiple U.S. jurisdictions face increasing legal and operational compliance risk. Indeed, in the past year, Delaware, Iowa, Nebraska, New Hampshire, New Jersey, Tennessee and Minnesota enacted privacy laws and Maryland will enact its own privacy laws on October 1st. At the same time, various industry-specific and general recordkeeping requirements, ranging from employee data to transaction records, must be complied with and reconciled with privacy laws that often call for data minimization and timely deletion. Without a coordinated compliance strategy, organizations risk fines, litigation exposure, and regulatory scrutiny.

As the patchwork of privacy laws and recordkeeping laws continues to increase in complexity, now is the time for companies to act. Indeed, organizations that operate in any of the eight states that enacted (or will enact) privacy laws in 2025 should consider the effect of these laws on their recordkeeping strategy. Now is a great time to revisit data maps, record retention schedules and policies to ensure they are still serving the organization’s business needs and reducing information related exposure. Such actions now will go a long way towards achieving compliance in 2026 and reducing risk and costs associated with poor recordkeeping practices.

If your organization is seeking information governance initiatives, our team has solutions to assist clients in their efforts to maximize the usefulness of information assets while minimizing the cost and risk associated with their use. At CODISCOVR, we deliver client-focused, defensible solutions that are tailored to each organization’s specific needs. Reach out to Nicholas Berenato, Information Governance Principal, CODISCOVR. Nick is an attorney that collaborates with clients to address legal and financial exposure from their information assets through information governance. He develops strategies and policies to enable clients to effectively manage their data in a manner that minimizes costs and allows clients to leverage their data to support their business processes.