Are You Being Watched Everywhere You Go? The Shocking Consequences of a Nationwide Facial Recognition Ban

Privacy Law Implications of Facial Recognition Technology Bans in High-Stakes Divorce Litigation

The expanding patchwork of facial recognition technology bans across American cities has created an underexplored intersection with family law — one with genuine legal teeth in the right jurisdictions, meaningful ambiguity in others, and strategic implications that sophisticated practitioners on both sides of a divorce proceeding cannot afford to ignore. This article examines where the law is settled, where it remains genuinely contested, and how biometric privacy frameworks function as both offensive and defensive instruments in high-net-worth dissolution cases.

Your digital footprint is evidence. Learn how family law courts use it.

The Regulatory Landscape: What the Bans Actually Say — and What They Don't

Illinois is categorically different. The Biometric Information Privacy Act (BIPA), 740 ILCS 14/1 et seq., creates a private right of action with statutory damages of $1,000 per negligent violation and $5,000 per intentional or reckless violation. It is the only statute of its kind with this combination of private enforcement and per-violation damages, which explains why Illinois — and Cook County in particular — is where biometric privacy litigation has concentrated. Rosenbach v. Six Flags Entertainment Corp., 2019 IL 123186, confirmed that a plaintiff need not allege actual injury beyond the statutory violation itself to have standing, dramatically lowering the barrier to litigation. The Illinois Supreme Court's ruling in Cothron v. White Castle System, Inc., 2023 IL 128004, further held that a separate claim accrues each time a biometric identifier is collected or transmitted without authorization — a ruling with compounding damages implications that defendants in ongoing collection scenarios must understand.

What this means practically: BIPA arguments in a spousal surveillance context are currently strongest as discovery leverage and valuation tools rather than as standalone claims with predictable outcomes. The argument has not been tested and lost — it largely has not been tested at all. That is a different situation than settled adverse precedent, and sophisticated practitioners should characterize it accurately to clients.

Where Biometric Privacy Arguments Have Demonstrated Traction

The absence of published family court decisions directly adjudicating BIPA claims in divorce proceedings is not surprising — most high-stakes divorce cases settle, and settlement terms are confidential. What the litigation record does show is that BIPA's statutory damages structure creates powerful settlement incentives. The aggregate settlements in employment biometric cases — including a $228 million jury verdict against BNSF Railway in 2022 and a $92 million settlement with Google over Illinois users' biometric data — establish that courts and juries take these violations seriously at scale.

The more immediately relevant precedent for family law practitioners lies in the discovery context. Courts have permitted broad discovery into a party's technology use, data collection practices, and device configurations in custody disputes where surveillance conduct is alleged. The combination of a credible BIPA theory with a preservation letter and targeted discovery requests creates procedural pressure that is well-documented even where the underlying claim remains unlitigated to judgment. The strategic value is real; the claim's ultimate viability at trial in a domestic context remains an open question that honest practitioners should acknowledge.

Practical Applications: Where the Legal Theory Meets Litigation Reality

With the jurisdictional and doctrinal groundwork established, the following scenarios represent the most legally defensible applications of biometric privacy frameworks in dissolution proceedings:

• Parental monitoring applications during custody disputes — Some monitoring tools use facial recognition or biometric verification. Deployment of such tools by one parent without the other's knowledge during active litigation raises overlapping concerns: potential BIPA exposure in Illinois, possible violations of the federal Wiretap Act (18 U.S.C. § 2511) depending on the data captured, and direct relevance to the fitness and credibility determinations that custody proceedings require. These are not equivalent legal theories — the Wiretap Act has its own elements and defenses — but their convergence in a single fact pattern strengthens the overall discovery and litigation posture.
• Corporate equity and biometric compliance risk as a valuation issue — This application is the most legally settled of the three. If a spouse holds equity in a company that has deployed facial recognition technology in Illinois or another jurisdiction with a private right of action, any pending or threatened BIPA litigation, regulatory investigation, or unquantified compliance exposure is a legitimate subject of financial discovery and business valuation. Expert witnesses in business valuation routinely account for contingent legal liability. A company facing potential BIPA class action exposure — particularly post-Cothron, where per-transmission damages can compound rapidly — carries a different enterprise value than a clean comparable. This argument requires no extension of BIPA into novel domestic territory; it applies BIPA exactly as courts have already applied it.
• Biometric data in cloud photo storage — Google Photos, Apple Photos, and Meta's platforms have used facial recognition to organize and tag images. In Illinois, the legal exposure for these platforms themselves has been litigated (Meta settled a BIPA class action for $650 million in 2021). The relevance in a family law context is narrower: if a spouse has been systematically organizing, storing, or sharing biometrically-tagged images of minor children in ways that implicate third-party platform liability, this may be relevant to both the custody analysis and to any claim that the spouse's conduct created legal exposure affecting shared assets. This is a supporting argument rather than a primary claim.

Defensive Strategy: Mitigating Exposure for the Spouse Who Has Deployed These Technologies

If you are the party who has deployed biometric-capable technology, the following considerations apply immediately upon any indication that dissolution proceedings are likely:

Do not disable, delete, or modify systems in anticipation of litigation. Once litigation is reasonably anticipated, the duty to preserve potentially relevant evidence attaches. Disabling facial recognition features, deleting cloud-stored data, or reconfiguring surveillance systems after receiving any indication of impending legal action creates spoliation exposure that is often more damaging than the underlying biometric privacy issue. The appropriate response is preservation and documentation, not elimination.

For business owners, segregate personal and corporate exposure. If your company has BIPA exposure independent of the domestic dispute, that issue requires its own legal response and should not be conflated with the family law matter. Commingling the two creates confidentiality and privilege complications. Ensure that corporate counsel and family law counsel are coordinating appropriately.

Consider proactive remediation where litigation has not yet commenced. In some circumstances, coming into compliance before litigation begins — implementing proper consent procedures, deleting data collected without authorization, publishing a retention policy — may reduce ongoing exposure even if it does not eliminate liability for past violations. The timing and advisability of remediation is highly fact-specific and requires counsel's guidance.

Strategic Considerations for Practitioners: Preservation, Discovery, and Realistic Expectations

Practitioners should also be clear-eyed about the limitations of this strategy. BIPA claims in a domestic context are novel, the jurisdictional reach of municipal bans is generally limited to commercial actors, and a judge unfamiliar with biometric privacy law may require significant education before these arguments gain traction. The strongest use of these frameworks in current litigation is as discovery leverage, as a component of business valuation analysis, and as a credibility and fitness consideration in custody proceedings — not as standalone claims with predictable damages outcomes in a domestic context.

The Trajectory of the Law and What It Means for Current Cases

Biometric privacy regulation is expanding. Texas and Washington have BIPA-analogous statutes, though with different enforcement mechanisms. Federal biometric privacy legislation has been introduced in multiple congressional sessions, and the current regulatory climate suggests eventual federal action. Several states have enacted or are considering comprehensive privacy statutes that include biometric data provisions.

For practitioners handling cases that will extend over months or years, this trajectory matters. A spouse who is currently in technical compliance with a municipal ordinance that covers only government use may face private liability under a new state statute before the case concludes. Discovery requests and preservation demands that capture the current state of a party's biometric data practices also capture the baseline against which future compliance — or non-compliance — will be measured.

The intersection of facial recognition technology bans and family law is not a settled area of doctrine. It is an area where the law is being written in real time, where the first practitioners to develop coherent theories and test them in court will shape the framework for everyone who follows, and where the gap between what is legally possible and what most practitioners are currently attempting remains genuinely wide. The analysis above represents the current state of the law as accurately as the available precedent permits — including its ambiguities, its unresolved questions, and its genuine potential.