Recent legal cases highlight the complex landscape of biometric privacy laws, particularly under Illinois' Biometric Information Privacy Act (BIPA). In Zellmer v. Meta Platforms, the 9th Circuit upheld Meta's use of facial recognition technology for creating "face signatures" on Facebook's Tag Suggestions feature, ruling that these signatures did not violate BIPA as they could not identify non-users. This decision emphasizes BIPA's requirement that biometric data must be capable of identifying an individual to trigger legal protections.
Similarly, in a case against X, formerly Twitter, a Northern District of Illinois court dismissed a class action alleging that X's PhotoDNA software violated BIPA by scanning images for nudity. The court determined that PhotoDNA's hashing process did not constitute biometric identifiers under BIPA, as it did not capture facial geometry or enable identification of individuals in photos. These rulings underscore the ongoing challenges and interpretations surrounding biometric technology and highlight the critical need for businesses to implement robust compliance measures to navigate the complexities of biometric data regulations effectively.
