Oregon CPA — Consumer Privacy & AI Profiling
Oregon's Consumer Privacy Act requires data protection assessments for profiling that presents risk of harm to consumers. If your business processes personal data from Oregon residents, this package covers the assessment and privacy notice requirements.
Does This Apply to You?
- You do business in Oregon or target Oregon residents
- You process personal data of 100,000+ consumers per year
- OR: You derive 25%+ of revenue from data sales and process data of 25,000+ consumers
- You use that data for targeted advertising, profiling, or automated decisions
Persons doing business in OR or targeting OR residents that (1) process personal data of 100,000+ consumers/year OR (2) derive 25%+ revenue from data sales and process data of 25,000+ consumers.
What's Included (6 Documents)
Privacy Notice Template
Data Protection Assessment
A documented evaluation weighing the benefits of your data processing against the risks to consumers. Required by most state privacy laws.
Consumer Rights Request Procedures
Profiling Opt-Out Documentation
Data Processing Agreement Template
Compliance Checklist
Every step you need to take, in order, so nothing gets missed.
What Happens Without Compliance
Oregon Attorney General enforcement (§ 646A.589). No private right of action. Mandatory 30-day cure period expired January 1, 2026 (§ 646A.589(2)); AG now has enforcement discretion and can bring action without prior warning. Civil penalties up to $7,500 per violation (ORS § 646A.589(4)(a)).
Maximum: Up to $7,500 per violation (ORS § 646A.589(4)(a))
Preview Your Documents
See what your compliance package includes — sample shown with example data
See Inside Your Documents
Sample page using demo data. Your documents will include your company name, AI systems, and compliance details.
All documents include electronic signature blocks compliant with the ESIGN Act (15 U.S.C. § 7001) and UETA.
What Happens After You Purchase
Your documents generate instantly as fillable PDFs, packaged in a single zip file.
Download directly to your device or email to up to 3 team members.
Fill in the highlighted form fields with your company-specific information. Each document includes clear instructions.
Sign using the electronic signature blocks — ESIGN Act compliant, no printing required.
Have your legal team review the completed documents before deployment.
Statutory Authority
Citation: ORS §§ 646A.570–646A.589
View official source(opens in new tab)Complete Package
$249
One-time purchase. Instant download.
- 6 customized documents
- Instant digital download
- Based on ORS §§ 646A.570–646A.589
- Secure checkout via Stripe
Purchase now, customize your documents after checkout
vs. thousands at a law firm
Verified against enacted statute text
Source: ORS §§ 646A.570–646A.589Questions before purchasing? Email us
Customize Your Oregon CPA Package
Fill in your company details below. Your answers will be used to pre-fill your compliance documents.
Step 1 of 5
Company Information
You May Also Need
Strengthen your compliance program with related documentation.
NYC Local Law 144
If you hire in New York City and use any automated tool to screen or evaluate candidates, you need a...
Texas TDPSA
The Texas Data Privacy and Security Act requires data protection assessments for targeted advertisin...
Texas TRAIGA
Texas HB 149 — the Responsible AI Governance Act — took effect January 1, 2026 and applies to any bu...