Bill > HB5179

This bill, titled the Protection of Neural Data Act, establishes new rules for nonmedical entities that use or facilitate the use of "neural devices" – devices that interact with an individual's nervous system, like brain-computer interfaces – to collect "neural data," which is information about the activity of the central or peripheral nervous systems. Any such entity, referred to as a "covered entity," must clearly post all user agreements and privacy terms online and inform individuals about the health and safety risks of the device. Crucially, covered entities are prohibited from storing, retaining, or transferring an individual's neural data without explicit consent. If an individual withdraws their consent, the covered entity must delete all their neural data and instruct any third parties who received it to do the same within 30 days. The Attorney General and State's Attorneys are empowered to enforce this Act, with violations being a Class 1 misdemeanor, and individuals harmed by violations can sue for damages, with a presumption of at least $10,000 in damages for unauthorized data transfers.

https://www.ilga.gov/Legislation/BillStatus?DocNum=5179&GAID=18&DocTypeID=HB&SessionID=114&GA=104