|
|
| Line 2: |
Line 2: |
| <!-- The lead section as of writing this is taken from Wikipedia! --> | | <!-- The lead section as of writing this is taken from Wikipedia! --> |
| The [[wikipedia:Biometric Information Privacy Act|Biometric Information Privacy Act (BIPA)]] is a law set forth on October 3, 2008 in the U.S. state of Illinois, in an effort to regulate the collection, use, and handling of biometric identifiers and information by private entities. | | The [[wikipedia:Biometric Information Privacy Act|Biometric Information Privacy Act (BIPA)]] is a law set forth on October 3, 2008 in the U.S. state of Illinois, in an effort to regulate the collection, use, and handling of biometric identifiers and information by private entities. |
| ==Summary==
| |
| ===Section 2===
| |
| On section 2 of the bill, it clarifies what the term ‘biometric identifier’ means. It says it includes:
| |
| *A retina or iris scan
| |
| *A voiceprint
| |
| *A faceprint
| |
| *Fingerprints or palm prints and any other uniquely identifying information based on the characteristics of an individual’s gait or other immutable characteristic of an individual.
| |
|
| |
| It does not include:
| |
| *Writing samples or writing signatures
| |
| *Human biological samples used for testing or screeening, does not include donated organs, tissues, or parts or blood or serum stored on behalf of recipients stored by a federally designated organ procurement agency and more.
| |
|
| |
| The bill also clarifies what the term ‘confidential and sensitive information’ means. It means:
| |
| *Personal information that can be used to uniquely identify an individual or an individual’s account or property and includes genetic markers
| |
| *Genetic testing information
| |
| *Unique identifier numbers to locate accounts or property
| |
| *Account numbers, personal identification numbers, pass codes, driver’s license numbers, or Social Security numbers.
| |
|
| |
| It also describes what private entity means. It means personal information that can be used to uniquely identify an individual or an individual’s account or property. It includes:
| |
| *Genetic markers/genetic testing information
| |
| *Unique identifier numbers to locate accounts or property
| |
| *Account numbers, personal identification numbers, pass codes, driver’s license numbers, or Social Security numbers.
| |
|
| |
| It also clarifies what ‘written release’ means. It means specific, discrete, freely given, unambiguous, and informed written consent given by an individual who is not under any duress or undue influence of an entity or third party at the time such consent is given or, in the context of employment, a release executed by an employee as a condition of employment.
| |
|
| |
| ===Section 3===
| |
| Section 3 says this.
| |
| <blockquote> Not later than 60 days after the date of the enactment of this Act, any private entity in possession of biometric identifiers or biometric information concerning an individual shall develop and make available to the public a written policy establishing a retention schedule and guidelines for permanently destroying such biometric identifiers and biometric information not later than the earlier of—
| |
|
| |
| (A) the date on which the initial purpose for collecting or obtaining such identifiers or information has been satisfied, if the individual from whom the biometric information was collected—
| |
| (i) freely consented to the original purpose for such collection; and
| |
| (ii) could have declined such collection without consequence; or
| |
|
| |
| (B) 1 year after the individual’s last intentional interaction with the private entity.</blockquote>
| |
|
| |
| [[Category:US legislation]]
| |