What compliance consideration specifically applies to biometric authentication data under U.S. and international regulations?
-
A
Biometric data is fully exempt from all privacy and data protection regulations
-
B
Biometric data is classified as sensitive personal data under laws like GDPR and Illinois BIPA, requiring consent, secure storage, and breach notification
-
C
Biometrics automatically satisfy all authentication compliance requirements without additional controls
-
D
Biometric systems do not require user consent because data is collected passively