FB pixel

Hospital network sued under BIPA

 

A former director of security and public safety at a hospital in the suburban Chicago area has filed a class action suit against Illinois’ Northshore University Health System, claiming that it violated the state’s Biometric Information Privacy Act (BIPA) by requiring certain workers to have their retina or handprint scanned to access restricted areas, Law360 reports.

The suit, filed in Cook County Circuit Court, alleges that as a Restricted Access Worker, plaintiff Charles Thurman was put at risk of identity theft by the retention of his biometric data, and that Northshore improperly disclosed his data to out-of-state third-party vendors, including Software House, which allegedly runs the biometric system.

“Unlike a Social Security number that can be changed, no amount of time or money can compensate plaintiff and the putative class if their handprint or retina information are compromised by the lax procedures through which defendant captured, stored, used and disseminated their workers’ biometrics,” Thurman alleged in his complaint. “Plaintiff would not have provided his biometric information to defendant if he had known that they would retain such information for an indefinite period of time without his consent.”

Thurman was required to use biometrics to authorize access to the hospital’s nuclear medications and radio areas. Thurman alleges that he was never properly informed in writing of the purpose of the biometric data collection, or of details about the data’s collection, storage, and use. Complicating the matter, Northshore was engaged in merger talks in 2016, and Thurman says he and other staff were not informed how if at all their biometric data would be affected.

Facebook is also fighting a lawsuit under BIPA, and a ruling in that case could affect the criteria for showing harm under the statute.

Article Topics

 |   |   |   | 

Latest Biometrics News

 

Biometrics connecting ID and payments through digital wallets, apps and passkeys

Biometrics are connecting with payment credentials, whether through numberless credit cards and banking apps or passkeys, as the concrete steps…

 

Reach of Musk, DOGE’s federal data access sets off privacy, security alarms

Led by tech billionaire Elon Musk and a shadowy team believed to be under his control, the United States DOGE…

 

Mobile driver’s licenses on the cusp of ‘major paradigm shift’

More entities have integrated the California mobile driver’s license (mDL) credential for identity verification. Although just 15 states have introduced…

 

Gesture-based age estimation tool BorderAge joins Australia age assurance trial

Australia’s age assurance technology trial is testing the new biometric tool that performs age estimation based on hand gestures. The…

 

European AI compliance project CERTAIN launches

The pan-European project to create AI compliance tools CERTAIN has kicked off its work, with the goal of making European…

 

Signaturit Group acquiring Validated ID for undisclosed sum

Spain-based digital identity and electronic signature provider Validated ID is being acquired by Signaturit Group, a European company offering identity…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Most Viewed This Week

Featured Company

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events