MAC’s Virtual Try-On Lawsuit, Explained
The MAC Cosmetics biometric privacy lawsuit centers on whether virtual try-on technology that scans faces to simulate makeup complies with laws governing the collection, consent, storage, and disclosure of facial recognition data, and its outcome could influence how beauty brands worldwide design their augmented reality tools and privacy practices. At the heart of the case is Illinois resident Fiza Javid, who says she used MAC’s in-store device and similar online tool that scan facial features to apply digital products. The complaint alleges that MAC captured her facial geometry without telling her that the company would “capture, collect, otherwise obtain, store and use her facial geometry through its virtual try-on mechanisms.” A federal judge in the Northern District of Illinois has dismissed MAC’s motion to throw out the proposed class action, keeping the biometric privacy lawsuit alive and signaling that the claims are plausible enough to proceed.
What Counts as Biometric Data in Beauty Tech?
Virtual try-on technology in beauty often relies on detailed facial maps to position lipstick, foundation, or eye shadow accurately on a user’s image. Those detailed measurements of facial geometry can qualify as biometric identifiers, which receive special legal protection in places with biometric privacy rules. In this lawsuit, MAC’s tools are alleged to scan users’ facial features both in stores and online to create digital makeup simulations. The claim is not about the fun AR filters themselves, but about whether the underlying facial recognition data is collected and stored with proper notice and consent. According to Global Cosmetics News, the complaint argues that MAC did not provide written disclosures, did not obtain informed written consent, and did not publish a biometric data retention and destruction policy, all of which are required under Illinois’ Biometric Information Privacy Act.
Why the Judge Let the Class Action Proceed
The early court decision does not say MAC is liable, but it does say the plaintiff’s biometric privacy allegations are strong enough to be tested in court. MAC sought to have the class action dismissed, but the US District Court for the Northern District of Illinois rejected that attempt on 4 June. The judge found that the plaintiff plausibly alleged that MAC collected biometric data through its virtual try-on tools. This means the case will move into discovery, where both sides can demand documents and technical details about how the facial scanning systems work. For beauty brands, the message is clear: claims that facial recognition data is being captured without clear, written consent are being taken seriously, especially when tools are used both on retail counters and brand websites.
Implications for Beauty Brand Privacy and Retail Tech
This biometric privacy lawsuit highlights growing legal scrutiny of how beauty brands deploy augmented reality and facial scanning in stores and online. If the plaintiff succeeds or MAC agrees to a settlement that includes policy changes, it could set a template for how cosmetics and retail companies handle biometric data collection going forward. Brands may be pushed to provide plain-language explanations before a scan occurs, obtain signed consent, and publish clear policies explaining how long facial recognition data is kept and when it is deleted. Even outside Illinois, consumer expectations are shifting toward more transparency and control over biometric identifiers. For product, marketing, and IT teams, beauty brand privacy is no longer only about email addresses and purchase histories; it now extends to the intimate measurements of a shopper’s face.
What Consumers Should Know Before Using Virtual Try-On
For consumers, virtual try-on tools can be convenient, but they also raise questions about how your face is recorded and stored. When you sit at a digital makeup station or turn on a webcam try-on feature, the system may be doing more than showing a filter; it might be creating a persistent map of your facial geometry. Before using these tools, look for privacy notices on the screen, at the counter, or on the brand’s website. Check whether the company explains what biometric or facial recognition data is collected, how it will be used, and how long it is kept. If written consent is requested, read it instead of clicking through. If the disclosures are missing or vague, you can refuse the scan and ask for a traditional product consultation instead.
