Tap any paragraph to write a margin note. Your notes collect in the Desk below the text and file under cases with @. The side-by-side margin rail opens on a larger screen.

§
Marginalia
Code · Utah · Title 63A — Utah Government Operations Code · Chapter 19

63A-19-501. Data privacy ombudsperson.

358 words·~2 min read·/ut/title-63a/chapter-19/63a-19-501·

A research copy — for the controlling text, always check the official state or federal source. Not legal advice.

Effective 5/6/2026
63A-19-501. Data privacy ombudsperson.
(1)There is created within the office the position of data privacy ombudsperson.
(2)The governor shall appoint the ombudsperson with the advice of the governing board.
(3)The ombudsperson shall:
(a)be an attorney in good standing and authorized to practice law in this state;
(b)be familiar with the provisions of:
(i)this chapter;
(ii)Chapter 12, Division of Archives and Records Service and Management of Government Records;
(iii)Chapter 20, State-Endorsed Digital Identity; and
(iv)Title 63G, Chapter 2, Government Records Access and Management Act; and
(c)serve as a resource for:
(i)an individual who is making a data privacy complaint; and
(ii)a governmental entity that is the subject of a data privacy complaint.
(4)The ombudsperson may:
(i)upon request by a governmental entity or individual, mediate a dispute between the governmental entity and the individual regarding the individual's data privacy complaint; and
(ii)upon resolution of a data privacy complaint described in Subsection (4)(a)(i) , post on the office's website a brief summary of the data privacy complaint and the resolution of the matter; and
(b)provide data privacy education and training in accordance with Subsection 63A-19-301(3)(g) .
(5)The ombudsperson may not:
(a)mediate a dispute between a governmental entity and an individual if the individual's data privacy complaint is within the authority of:
(i)the Government Records Office created in Section 63A-12-202 ; or
(ii)the government records ombudsman established in Section 63A-12-204 ;
(b)expand the scope of a mediation beyond the individual's data privacy complaint;
(c)testify, or be compelled to testify, regarding a matter for which the ombudsperson provides services under this section; or
(d)conduct an audit of a governmental entity's privacy practices.
(6)After consultation with the chief privacy officer, the ombudsperson may raise matters and questions to the governing board.
(7)The ombudsperson may receive and review complaints regarding alleged violations of Chapter 20, State-Endorsed Digital Identity, by private sector entities, and may refer such complaints to the attorney general for enforcement in accordance with Section 63A-20-801 .
Amended by Chapter 202 , 2026 General Session
★   the supreme law of the land   ★
Don't Tread on Me
E Pluribus Unum — out of many, one

"If you don't know your rights, you don't have any."

Marginalia · a citizen's law index
A research desk, not legal advice. Always read the cited source before relying on a summary.
Questions or an issue? support@self-law.org
disclaimerMarginalia is a research index, not a law firm. Nothing on this site is legal, tax, or financial advice and no attorney–client relationship is formed by using it. Statutes, regulations, and case law change; summaries, search results, AI output, and member posts may be incomplete, out of date, or wrong. Any interpretation drawn from material on this site should be validated by a licensed attorney in your jurisdiction before you act on it.