Bills in the pipeline, laws already passed, and regulatory actions that affect what you can wear, where, and what companies can do with your data. Updated as laws change.
Approved April 2026. Japan's amended Act on the Protection of Personal Information introduces stricter rules for biometric data from wearables. Users can now demand an immediate stop to biometric data use including facial recognition. Creates a narrow AI research exemption under strict conditions.
In force August 2024. Classifies AI-powered wearables performing real-time biometric identification in public as high-risk. Requires risk management systems, data governance controls, human oversight, and transparency. Full enforcement originally August 2, 2026 — European Commission proposed a delay while harmonized standards are still being developed.
Would make it a crime to secretly record people using wearable devices inside businesses. Also targets manufacturers that disable recording indicator lights. Introduced February 2026 by Sen. Eloise Gómez Reyes. Limited to commercial settings — does not cover private residences.
Expands Illinois distracted driving law to explicitly include AI-powered smart glasses. Excludes smart glasses from hands-free exemptions. Passed the state legislature June 2026, awaiting Governor Pritzker's signature. If signed, Illinois becomes the first US state to specifically ban smart glasses while driving.
Would extend HIPAA-like protections to health data from consumer wearables including Apple Watch and Oura Ring. Introduced November 2025 by Sen. Bill Cassidy. Classifies wearable manufacturers as regulated entities. Prohibits selling health data without explicit consent. Has not advanced in committee.
Bipartisan bill by Sens. Jacky Rosen and Bill Cassidy requiring consumer consent before wearable health data can be sold or shared. Has not advanced. Companion legislation to HIPRA addressing the same HIPAA coverage gap for consumer wearable devices.
Renew Europe MEPs wrote to the European Commission on June 4, 2026 demanding action after a Swedish investigation found Meta contractors reviewed deeply private footage from smart glasses — including bathroom visits and sexual activity — for AI training. Commission asked to take concrete action on GDPR compliance.
UK Information Commissioner's Office formally wrote to Meta in March 2026 requesting information on compliance with UK data protection law, following the Swedish investigation into Meta contractor footage reviews. ICO stated devices should put users in control and provide transparency, including for AI training data use.
China Academy of Information and Communications Technology issued a voluntary nationwide code of conduct for smart glasses on June 25, 2026. Urges manufacturers to obtain explicit consent before recording, standardizes LED recording indicators, and requires minimum data collection. Follows a Rokid scandal in which flight attendants were recorded without consent. Code is entirely voluntary — no legal enforcement mechanism.