Biometric fingerprint scan “Alleged victims can bring suit on the basis of a technical violation alone, and without the need to prove that they suffered actual damages,” warn the authors of Chubb’s report. (Photo: Shutterstock)

If your company is collecting fingerprints, iris scans and voice prints to authenticate employees or customers, make sure you follow a growing number of state biometric privacy laws or you could face significant litigation, according to the Chubb’s latest Cyber InFocus report, “Know the Latest Trends in Cyber Risks.”

The report discusses “a surge” of class-action lawsuits for alleged violations of Illinois’ Biometric Information Privacy Act, which regulates the collection, use, storage and destruction of a person’s biometric identifiers. The 2008 law requires notice before biometric information is collected, limits the sale and disclosure of biometric information, requires reasonable care to safeguard biometric information and prohibits the retention of biometric information beyond the purpose for which it was collected.

Want to continue reading?
Become a Free
PropertyCasualty360 Digital Reader.


  • All news coverage, best practices, and in-depth analysis.
  • Educational webcasts, resources from industry leaders, and informative newsletters.
  • Other award-winning websites including and

Already have an account?



Join PropertyCasualty360

Don’t miss crucial news and insights you need to make informed decisions for your P&C insurance business. Join now!

  • Unlimited access to - your roadmap to thriving in a disrupted environment
  • Access to other award-winning ALM websites including, and
  • Exclusive discounts on PropertyCasualty360, National Underwriter, Claims and ALM events

Already have an account? Sign In Now
Join PropertyCasualty360

Copyright © 2022 ALM Global, LLC. All Rights Reserved.