Close Menu
Trending
Privacy

Understanding New York’s Proposed Biometric Privacy Act and Its Impact on the Fordham Community

Josephine Law, FIP, CIPP/US, CIPMBy No Comments4 Mins Read
New York State Flag, Allegany River Rest Area, I-86, New York
Photo by JeromeG111

As biometric technology continues to play a more prominent role in our daily lives, from unlocking phones with facial recognition to workplace security systems relying on fingerprint scans, concerns about the privacy of such sensitive information are growing. New York’s proposed Biometric Privacy Act is designed to address these concerns, and its implications could significantly affect individuals and organizations alike. Here’s what members of the Fordham University community should know about this groundbreaking legislation.

Key Milestones in the Biometric Privacy Act’s Journey

  1. March 2023: The bill was introduced in the New York State Senate, kicking off its legislative process.
  2. June 2024: The Senate passed the bill, which was then referred to the New York State Assembly’s Consumer Affairs and Protection Committee.
  3. 2025 and Beyond: The Assembly is currently reviewing the bill. It will proceed to the Governor’s desk for final authorization if approved.

What Does the Biometric Privacy Act Entail?

The proposed legislation includes several measures aimed at ensuring the responsible collection, use, and storage of biometric data:

  1. Written Policy Requirement: Organizations must develop a publicly available policy outlining how biometric data is stored and when it will be deleted. This policy ensures transparency and accountability.
  2. Informed Consent: Businesses must inform individuals in writing before collecting their biometric data, specifying the purpose and duration of its use. Written consent is mandatory.
  3. Prohibition on Profiting from Biometric Data: The sale, lease, or trade of biometric data is strictly prohibited, ensuring that sensitive information is not commercialized.
  4. Private Right of Action: Individuals can take legal action against businesses that fail to comply with the law, enabling stronger accountability.

How Will This Impact the Fordham Community?

For Students, Faculty, and Staff:

  • Enhanced Privacy Protections: The Act will require organizations, including potential partners or vendors of Fordham University, to handle biometric data more responsibly. For instance, if Fordham implements biometric systems for campus access, transparent policies and consent procedures would be mandatory.
  • Greater Transparency: The law empowers individuals by ensuring they are informed about how their biometric data is collected, stored, and used.
  • Accountability for Violations: Individuals can hold companies accountable for misuse or negligent handling of their biometric data with the private right of action.

For the University:

  • Compliance Requirements: Fordham must ensure that any systems or services involving biometric data comply with the new regulations. This might include updating vendor agreements, revising internal policies, and training staff.
  • Alignment with Ethical Standards: Adhering to the Act’s requirements aligns with Fordham’s commitment to ethical stewardship of personal information and upholds trust with the community.

Why Should the Fordham Community Care?

Biometric data, by its nature, is deeply personal and unique. Unlike passwords, it cannot be changed if compromised. The Biometric Privacy Act provides essential safeguards to ensure this sensitive information is treated with the utmost care. For Fordham students, faculty, and staff, this means:

  • Protection Against Identity Theft: By regulating the use of biometric data, the Act reduces the risk of misuse, such as unauthorized access to personal accounts or sensitive facilities.
  • Empowered Decision-Making: Clear, written consent processes ensure that individuals have control over their data and are not unknowingly subjected to invasive practices.
  • Legal Recourse: If violations occur, individuals have the right to seek remedies, fostering greater accountability among organizations handling biometric data.

Preparing for the Future

The Biometric Privacy Act reflects a broader trend toward stronger privacy protections, mirroring laws like Illinois’ Biometric Information Privacy Act (BIPA) and international regulations such as the General Data Protection Regulation (GDPR).

As a leader in ethical technology and data stewardship, Fordham University continues to monitor developments in data privacy legislation to ensure compliance and safeguard the community’s interests. Members of the Fordham community are encouraged to stay informed about their rights and to engage in discussions about the ethical use of emerging technologies.

Senior IT Risk Analyst, Information Security and Assurance | Fordham University Certified Information Privacy Professional/United States (CIPP/US) and Certified Information Privacy Manager (CIPM) with a strong background in IT risk, privacy, and security. A versatile writer with experience in technical, policy, marketing, and social media content, blending expertise in business writing with communications and academics. Creative, resourceful, and adaptable, with a strong work ethic, a positive attitude, and a sense of humor.

Related Posts