Indiana
💡 Last Updated October 2025. Written with contributions from both human authors and LLMs. If you find incorrect or outdated information let us know at support@optery.com.
Indiana's INCDPA gives you the right to opt out of data brokers.
Privacy law in Indiana
There is no comprehensive consumer privacy law in Indiana yet. Indiana Senate Enrolled Act No. 5 (2025) is focused entirely on state fiscal integrity, government contract accountability, federal funds reporting, and Medicaid oversight — it does not grant Indiana residents any consumer data privacy rights. It does not address data brokers, the collection or sale of personal information, or any consumer rights to access, delete, or correct personal data. Indiana does have a data breach notification law and certain sector-specific protections, and federal laws provide a baseline of protection for specific categories of data.
What protections do exist in Indiana
Indiana Disclosure of Security Breach Act
Indiana businesses that own or license computerized personal data must notify affected Indiana residents when a data breach occurs that could result in identity theft or fraud. Notification must be made in the most expedient time possible. (Ind. Code § 24-4.9)
Indiana Senate Enrolled Act No. 5 (2025) — Fiscal Integrity and Contract Accountability
This 2025 law requires state agencies to publicly report on large government contracts (over $500,000), prohibits nonpublic contracts, mandates competitive procurement, and increases transparency on state spending. It is a government accountability law, not a consumer privacy law, and does not grant residents any privacy rights. (IC 5-35.7 (as added by SEA 5, Section 6))
Federal protections that apply to Indiana residents
Even without a comprehensive state privacy law, federal law provides some baseline protections. The FTC Act (Section 5) prohibits unfair or deceptive practices involving your personal data. HIPAA protects your medical records held by health providers and insurers. COPPA requires parental consent before websites collect personal data from children under 13. The Gramm-Leach-Bliley Act and Dodd-Frank Act provide protections for your financial data held by banks and financial institutions.
How Optery helps Indiana residents
Data brokers collect and sell personal information about almost every American adult — home addresses, phone numbers, family relationships, employment history. They do this regardless of whether your state has a comprehensive privacy law. Optery scans over 200 data brokers to find where your information is exposed, then submits removal requests on your behalf and tracks compliance. Our service works for every US resident, not just those in states with strong privacy statutes.