Facebook to Settle Illinois Biometric Privacy Class Action: A $550 Million Warning to All Companies that Collect Customer Biometric Data

February 2020

On January 29, 2020, Facebook agreed to a $550 million settlement in a class action suit filed under Illinois’ Biometric Information Privacy Act (BIPA). If approved by the California district court, the settlement will compensate Facebook users in Illinois for Facebook’s use of facial recognition technology known as “tagging” without their consent and in violation of BIPA. This significant settlement will likely spur future class action lawsuits related to biometric privacy, which have been steadily rising since the Illinois Supreme Court’s decision in Rosenbach v. Six Flags (discussed here) to hold companies liable for mere statutory non-compliance. Facebook’s settlement further emphasizes that companies need to comply with biometric privacy laws if they collect or store an individual’s biometric information. 

In Patel v. Facebook, the case resulting in the $550 million settlement, Facebook argued that the BIPA violations did not occur “primarily and substantially” in Illinois, since its servers are located in California. However, the court disagreed and suggested that a consumer’s mere use of Facebook in Illinois made BIPA applicable. This extraterritorial holding from Patel, in conjunction with Rosenbach’s holding that statutory non-compliance is sufficient injury to bring suit, highlight that companies who do business with Illinois residents need to review their biometric data collection practices for compliance with Illinois’ law, even if they are not headquartered or located in Illinois.

BIPA governs how entities operating in Illinois collect, process, and use consumers’ biometric data. It requires these businesses to obtain explicit written consent from a consumer before collecting any biometric identifiers. BIPA also requires written notice to individuals when collecting or storing biometric identifiers and mandates disclosure of the specific purpose and duration for which that data are kept. For more information on compliance with BIPA and other biometric privacy laws, see our previous client alert.

If you need assistance complying with biometric information laws or other privacy laws, please contact one of our Cybersecurity & Data Privacy attorneys.

Firm Highlights
News

Jeremy P. Brummond Presents at Webinar for Experienced Construction Attorneys

More
Client Alert

EEOC Issues Updated Guidance on COVID Vaccination Policies

More
News

A Lawyer’s Guide to the Galaxy Podcast Named Among Best Copyright Law Podcasts for 2021 by Welp Magazine

More
News

Michael D. Mulligan, Mysun Charitable Foundation Recognized at Greensfelder Park Ribbon Cutting Ceremony

More
Diversity & Inclusion

Lewis Rice Launches “Next Level” Diversity and Inclusion Programs

More
Client Alert

FTC Adds Teeth to the ‘Made in USA’ Rule

More
Client Alert

Missouri Supreme Court Reverses Overtime Wages Judgment Resulting from Employer-Mandated Screenings Under the Portal-to-Portal Act

More
Client Alert

The New Standard Contractual Clauses: Scope, Impact, and Next Steps

More
Client Alert

Supreme Court Hands Down Unanimous Decision Limiting FTC’s Ability to Seek Monetary Relief

More
News

Jeannine Moentmann Becomes President of St. Louis Paralegal Association for 2021-2022

More
Client Alert

Missouri Supreme Court Holds that Public Governmental Bodies May Not Charge for Attorney Review Time

More
News

Lewis Rice Welcomes 2021 Summer Associates

More
Client Alert

Colorado Joins the Bandwagon, Enacts Comprehensive Privacy Law

More
News

Claims Filed for Compensation in North Carolina Ecusta Trail Rail-to-Trail Case

More
Client Alert

CROWN Act Legislation on the Verge of Passage in St. Louis City & County

More
Client Alert

First-Issued Interim Final Rule Gives Guidance on No Surprises Act

More
Client Alert

Supreme Court Limits Ability to Compel Access to Private Property Without Compensation

More
Client Alert

The Changing Workplace Following the Latest CDC Mask Guidance

More
Client Alert

DOL Publishes Cybersecurity Guidance for Benefits Plans

More
Diversity & Inclusion

Law Firm ILN-telligence Podcast Hosts Ronald A. Norwood to Discuss Mentorship, Diversity & Inclusion in the Legal Industry, and the Importance of Equity for All

More