
When most people think about digital privacy litigation, California comes to mind first. The state's Invasion of Privacy Act has generated hundreds of lawsuits against companies that intercept chat communications, deploy session replay software, and harvest data without meaningful consent. What fewer people recognize is that Illinois has its own powerful wiretapping statute and it remains significantly underutilized as a vehicle for consumer privacy protection.
The Illinois Eavesdropping Act prohibits the intentional use of any device to hear, transmit, or record any oral, telephone, or electronic communication without the consent of all parties to that communication. Illinois is an all-party consent state, which means every participant in a conversation must agree to its recording or interception—not just the company doing the collecting.
The statute was substantially amended following a 2014 Illinois Supreme Court ruling that struck down portions of the prior version on First Amendment grounds. The revised law narrowed its scope in some respects while preserving robust protections for private electronic communications. Critically, it applies to electronic communications—a term broad enough to encompass the kinds of digital data collection practices that have become standard across the technology, retail, and healthcare industries.
California's Invasion of Privacy Act and the Illinois Eavesdropping Act share the same foundational architecture: both require all-party consent, both apply to electronic communications, and both authorize private civil claims. The practical difference has been one of litigation volume rather than legal strength.
California courts have spent years developing case law around CIPA's application to live chat tools, session replay software, and third-party analytics vendors. That body of precedent has made CIPA claims somewhat easier to pursue because the legal arguments are well-developed. Illinois plaintiffs have access to the same underlying legal theories, a potential opportunity for individuals whose data has been collected without proper consent.
Understanding what conduct the statute covers is essential for identifying potential claims. Several categories of common corporate data practices may expose companies to liability under Illinois law.
A plaintiff pursuing a claim under the Illinois Eavesdropping Act must establish several core elements: that an electronic communication occurred, that it was intercepted or recorded, that the defendant used a device to accomplish the interception, and that the plaintiff did not consent to the recording. The consent element is particularly important—and often the most contested.
Claims may be brought individually or as class actions. Given that data collection practices tend to be uniform across a company's entire user base, class certification is often more realistic. Successful plaintiffs may recover actual damages, punitive damages, and litigation costs—making these cases financially viable even when individual harm is difficult to quantify precisely.
The Lyon Firm represents individuals and classes of consumers in data privacy litigation across Illinois, California, and nationwide. The firm brings focused experience in wiretapping claims, electronic surveillance cases, and consumer privacy litigation—understanding both the technical realities of how data collection operates and the legal framework for holding companies accountable when they cross the line.
Whether you are an Illinois resident whose communications were intercepted without consent, or a consumer in any state facing unlawful data collection practices, The Lyon Firm has the knowledge and resources to evaluate your claim and pursue it. Contact The Lyon Firm today for a free case evaluation.
Taking the first step doesn’t have to be complicated. In just a few minutes, you can share the basics of your case, and our team will guide you from there: