Because we all know what “serious” means...

https://helenair.com/news/state-and-regional/govt-and-politics/montana-agencies-dont-handcuff-investigations-with-facial-recognition-regulations/article_c3250568-a9ba-59cc-8e28-506879d6eaa1.html

Montana agencies: Don't 'handcuff' investigations with facial recognition regulations

Law enforcement officials on Tuesday urged state lawmakers to remain even-handed as they begin developing new regulations for facial recognition technology.

The draft legislation still under construction by the committee would restrict state government agencies' use of the software, but does allow law enforcement to use the facial recognition technology while investigating a "serious crime." Such crimes included in the draft bill range from assault with a weapon to deliberate homicide.

Come on Bob, try to keep up!

https://www.bespacific.com/congress-might-pass-an-actually-good-privacy-bill/

Congress Might Pass an Actually Good Privacy Bill

Wired: “Usually, when Congress is working on major tech legislation, the inboxes of tech reporters get flooded with PR emails from politicians and nonprofits either denouncing or trumpeting the proposed statute. Not so with the American Data Privacy and Protection Act. A first draft of the bill seemed to pop up out of nowhere in June. Over the next month, it went through so many changes that no one could say for sure what it was even designed to do. For such an important topic, the bill’s progress has been surprisingly under the radar. Now comes an even bigger surprise: A new version of the ADPPA has taken shape, and privacy advocates are mostly jazzed about it. It just might have enough bipartisan support to become law—meaning that, after decades of inaction, the United States could soon have a real federal privacy statute. Perhaps the most distinctive feature of the new bill is that it focuses on what’s known as data minimization. Generally, companies would only be allowed to collect and make use of user data if it’s necessary for one of 17 permitted purposes spelled out in the bill—things like authenticating users, preventing fraud, and completing transactions. Everything else is simply prohibited. Contrast this with the type of online privacy regime most people are familiar with, which is all based on consent: an endless stream of annoying privacy pop-ups that most people click “yes” on because it’s easier than going to the trouble of turning off cookies. That’s pretty much how the European Union’s privacy law, the GDPR, has played out…”