AB 1221 creates a framework of worker-facing rules for any technology employers use to collect information about employees. It focuses on transparency (advance written notice and an upkeep requirement), constraints on certain categories of biometric and inferential surveillance, worker access and correction rights, and contract-level limits on what vendors may do with collected data.
The bill matters because it shifts surveillance governance away from internal HR discretion and onto explicit, enforceable duties: employers must document and justify monitoring, vendors face contractual limits and liability, and the Labor Commissioner has new enforcement tools. For compliance teams, the bill transforms several operational decisions into legal obligations; for vendors, it imposes new contract and data-handling requirements.
At a Glance
What It Does
The bill requires employers to notify affected workers in writing before deploying surveillance technologies, maintain an inventory of tools, and provide ongoing disclosure of changes. It bars a range of invasive inferences and certain recognition technologies, limits secondary uses and disclosures of worker data, and obliges employers and vendors to protect, return, and—when necessary—delete data.
Who It Affects
Frontline and knowledge workers subject to electronic monitoring, HR and compliance teams that procure or operate surveillance products, and vendors that supply analytics, biometric, or tracking systems to California employers. Local government employers and labor contractors are explicitly covered.
Why It Matters
AB 1221 redefines the baseline duties for workplace monitoring: transparency, data minimization, and access are not optional policies but statutory requirements, while vendors become contractual gatekeepers. That combination could change vendor pricing, procurement practices, and how employers justify monitoring as a business necessity.
More articles like this one.
A weekly email with all the latest developments on this topic.
What This Bill Actually Does
The bill starts by defining key terms broadly: “workplace surveillance tool” covers software, devices, or systems that collect worker-related information passively (not just human observation), and “worker data” captures any information linked to an individual worker. That broad scope is important because it brings routine time-tracking, geolocation, audio/video tools, and inferred attributes within the law’s reach.
Before an employer introduces any covered tool, the bill mandates a plain-language written notice in the language used for routine communications; the notice must be separate from other communications and include a detailed description of the data collected, the purpose of collection, which activities and job roles are monitored, storage practices, who can access the data (including named vendors), whether the data will inform employment decisions, and how workers can access and correct their data. Employers must keep an updated inventory of deployed tools and notify workers of significant changes.On data handling the bill limits transfers and downstream uses: employers may only share worker data with vendors under contracts that forbid resale, require security safeguards, impose joint-and-several liability for breaches, and restrict distribution of derived products.
It also requires secure storage and access controls, a duty to notify workers after breaches indicating what categories of data were affected, a vendor obligation to return worker data and delete residual copies at contract end, and a statutory retention period for surveillance data used in employment decisions.The bill places substantive limits on what surveillance may do. Employers cannot deploy tools that collect or infer sensitive personal categories (immigration status, health, religion, neural data, sexual orientation, criminal history, etc.) or use facial recognition, gait recognition, neural or emotion-recognition technologies except in narrowly defined device-access situations.
Employers may not primarily rely on automated surveillance data to discipline or dismiss workers; where surveillance contributed to discipline, the employer must conduct a human review, notify the worker, allow access to corroborating data, and give the worker an opportunity to correct data. The law also creates anti-retaliation protection and multiple enforcement pathways, including Labor Commissioner investigations, civil suits by employees, and local public prosecutors.
The Five Things You Need to Know
Employers must give affected workers a separate, plain-language written notice in their routine workplace language at least 30 days before introducing a surveillance tool, and update workers when uses change.
Vendors receiving worker data must be contractually prohibited from transferring, selling, or broadly distributing that data or derived products; the vendor and employer are jointly and severally liable for breaches involving that data.
The bill bans use or inference of a long list of sensitive attributes (including health, immigration status, neural data, and emotion recognition) and generally bars facial or gait recognition except to unlock a device or grant physical access.
If surveillance data contributes to discipline or discharge, the employer must perform a human review, notify the worker, allow access to surveillance and corroborating data within five business days, and correct erroneous data within 24 hours; penalties for violations are $500 per violation.
Employers must retain surveillance data used for employment decisions for at least five years, vendors must return worker data and delete remaining copies at contract end, and employers must provide a mechanism for workers to access and correct collected data.
Section-by-Section Breakdown
Every bill we cover gets an analysis of its key sections.
Definitions and scope
Section 1550 sets an expansive scope by defining ‘workplace surveillance tool’ and ‘worker data’ to include passive, technical collection and information that can be linked to an individual. That language pulls many routine employer systems—time tracking, GPS, video, audio, and analytics—into the statute rather than limiting coverage to new biometric devices. For compliance, the practical effect is to treat almost any automated monitoring as regulated unless it’s purely manual observation.
Advance notice, inventory, and notice content
Section 1551 creates the notice regime: employers must give a standalone, plain-language written notice in the worker’s usual communication language before deploying surveillance, keep a running list of tools in use, and notify new hires and affected workers of significant changes. The statute prescribes the notice content in detail—what data will be collected, the purpose, monitored activities and roles, storage, access rights, vendor identities, whether employment decisions will be made, and how to access and correct data—forcing employers to operationalize monitoring justifications and recordkeeping.
Data-sharing limits, vendor obligations, and security
Section 1552 restricts transfers and secondary uses: employers can only contract with vendors under terms that forbid resale and impose security obligations and joint liability for breaches. It requires access controls, breach notification to workers describing impacted categories, and a vendor obligation to return data and delete residual copies at contract termination. These clauses push vendors into narrower contractual models and require employers to build compliance checkpoints into procurement and vendor management.
Prohibited inferences and limits on automated decision-making
Section 1553 lists technologies and inferences employers cannot use—emotional, neural, facial or gait recognition, and any tool that infers sensitive personal categories. It also curbs sole reliance on surveillance for discipline: if surveillance contributes to an adverse employment decision the employer must conduct a human review, compile corroborating evidence, notify the worker and allow correction, and amend outcomes if data are corrected. This section forces employers to keep human judgment in adverse action pipelines and documents the evidentiary chain behind discipline.
Anti-retaliation protections
Section 1554 prohibits employers from retaliating against workers who exercise rights under the part—using access or correction rights, filing complaints, cooperating with investigations, or seeking enforcement. That standard mirrors other labor protections and signals that compliance teams cannot lawfully chill employee use of the new rights.
Enforcement routes and penalties
Section 1555 assigns enforcement to the Labor Commissioner with investigation and citation authority, preserves private civil actions by employees (including punitive damages and injunctive relief), and allows public prosecutors to enforce the part. The statute sets a civil penalty of $500 per violation and attaches the usual adjudicatory and collection mechanisms under existing Labor Code sections, so enforcement will use current Labor Commissioner processes and litigation avenues.
Local preemption
Section 1556 clarifies that the part does not preempt city or county ordinances that offer equal or greater worker protections. Practically, this means employers operating across jurisdictions must map municipal rules as well as the state statute to ensure compliance with the most protective local standard.
This bill is one of many.
Codify tracks hundreds of bills on Employment across all five countries.
Explore Employment in Codify Search →Who Benefits and Who Bears the Cost
Every bill creates winners and losers. Here's who stands to gain and who bears the cost.
Who Benefits
- Frontline hourly and monitored employees — they gain upfront notice about monitoring, explicit access and correction rights, limits on sensitive inference, and anti‑retaliation safeguards that make contesting adverse actions feasible.
- Authorized representatives and labor unions — the bill recognizes representatives, gives them access pathways, and creates clearer evidence trails for collective bargaining or grievance processes over monitoring practices.
- Privacy- and civil-rights-focused vendors offering privacy-preserving products — vendors that design systems around data minimization, local processing, and non-inferential analytics will find a market advantage as employers seek compliant solutions.
Who Bears the Cost
- Employers and HR/IT procurement teams — they must overhaul vendor contracts, maintain inventories and notices, add human-review processes for disciplinary actions, and bear litigation and compliance risk for missteps.
- Vendors of surveillance and analytics services — contractual prohibitions on resale, required deletion/return obligations, and joint liability for breaches will increase compliance costs and insurance premiums and may force business-model changes.
- Small businesses and labor contractors — the administrative burden of notices, inventories, and secure data practices may be proportionally larger for smaller employers that lack in-house legal or IT resources, making compliance more costly relative to firm size.
Key Issues
The Core Tension
The bill pits worker privacy and procedural safeguards against employers’ operational needs and vendors’ business models: it advances rights to notice, access, and limits on sensitive inferences, but those protections raise compliance costs, contractual friction with vendors, and operational complexity for employers who rely on automated monitoring for efficiency or safety—creating a situation where protecting privacy may meaningfully reduce employers’ flexibility or increase costs without an obvious single metric to balance the trade-off.
The bill stacks obligations that work together but also pull in opposite directions. It requires data minimization—collect only what’s necessary and proportionate—while demanding a multi‑year retention period for data used in employment decisions; reconciling those two duties will require tight policy design and clear guidance on what ‘necessary’ means for different monitoring use cases.
The joint-and-several breach liability for vendors plus contractual prohibitions on resale protect workers but will raise vendor pricing and may prompt vendors to decline certain contracts or offload risk through tighter service scopes.
Several definitions and exceptions invite litigation and agency rulemaking. ‘Worker data’ and ‘workplace surveillance tool’ are broad; employers may litigate over whether particular telemetry or HR analytics are covered. The facial‑recognition exception—allowed only to open locked devices or grant access—will generate edge cases (e.g., access-control cameras that double as security and monitoring).
The rapid-correction and reversal mechanics (24-hour fixes and changing discipline outcomes) create operational questions: how will employers validate corrections, and what evidentiary standard governs reversing a discharge? Finally, the $500 per-violation penalty is modest relative to potential business advantages from surveillance and may not deter systemic noncompliance, shifting enforcement emphasis to private litigation and reputational pressure.
Try it yourself.
Ask a question in plain English, or pick a topic below. Results in seconds.