Idaho security and surveillance regulations: what businesses must know

Idaho is a one-party consent state for audio recording under Idaho Code 18-6702. Idaho Code 28-51-104 (Idaho Identity Theft Act, breach notification) requires notice when personal information, including biometric data, is compromised. Idaho does not have a comprehensive consumer privacy law on the model of CCPA or VCDPA as of early 2026. Statewide alarm contractor licensing is limited; local jurisdictions impose alarm permits. Idaho does not have a recreational or medical cannabis program.

Camera-related state law

The governing audio statute is Idaho Code 18-6702, which makes interception of wire, oral, or electronic communications a felony unless a party to the communication consents. Idaho is a one-party consent state for audio recording.

Video-only surveillance of common areas with posted notice is generally lawful. Idaho Code 18-6609 (video voyeurism) reaches hidden cameras in places where privacy is reasonably expected. Posted notice at the entrance is the industry standard.

Alarm and security contractor licensing

Idaho does not have a comprehensive statewide alarm contractor license. Local jurisdictions (Boise, Meridian, Nampa, Idaho Falls, Coeur d'Alene) impose alarm permits and registration on alarm businesses. Buyers should verify both local permits and any business-license requirements before signing.

Federal floor for Idaho operators

Because Idaho does not have a comprehensive consumer privacy law or extensive state-specific surveillance statute beyond the wiretap and breach acts, the federal floor does most of the regulatory work for many Idaho commercial operators. NDAA Section 889 governs federal-procurement vendor selection. HIPAA Security Rule (45 CFR Part 164) governs PHI-touching footage. PCI-DSS Requirement 9 governs the cardholder data environment. FERPA reaches K-12 districts and higher education.

Idaho hosts Mountain Home AFB, Idaho National Laboratory (INL), and a substantial federal-research and food-processing footprint. INL pulls in DOE security regulations and additional CMMC, CUI handling, and SCIF expectations on top of state law.

Biometric data and breach notification

Idaho has not enacted a comprehensive consumer privacy law as of early 2026. Idaho Code 28-51-104 (Idaho Identity Theft Act) is the primary regulatory anchor for biometric records held by businesses. Operators using fingerprint or facial recognition document consent at enrollment, retain templates only as long as the operational purpose requires, and apply reasonable safeguards.

Privacy in the workplace

Idaho does not have a single workplace electronic-monitoring statute. Pure video surveillance of common work areas with posted notice is the routine pattern. Most ID employers issue a single workplace surveillance notice in the employee handbook. Manufacturing, food processing, and INL contractors commonly add badge-tied access control.

Video retention requirements

Healthcare. HIPAA Security Rule (45 CFR Part 164) governs PHI-touching footage.
Retail and hospitality. PCI-DSS Requirement 9 specifies 90-day retention for the cardholder data environment.
Federal contractors and DOE. NDAA Section 889 controls vendor selection. INL and Mountain Home AFB pull in additional DOE and DoD expectations.
Schools. FERPA reach for K-12 districts and higher education.
Hemp. ISDA and USDA rules for licensed hemp operators.

Default retention for ID commercial systems with no specific industry rule is 30 days.

What Tec-Tel does to comply with Idaho regulations

Video-only on cameras unless audio is documented with one-party consent under Idaho Code 18-6702.
Posted surveillance notice at every public entrance.
No cameras in restrooms, locker rooms, dressing rooms, or any space where privacy is reasonably expected.
Biometric capture documented at enrollment with a written retention and destruction schedule.
Retention configured to the regime that governs the industry (HIPAA, PCI, NDAA, DOE).
NDAA Section 889-compliant vendor selection on federal-touching installs (Mountain Home AFB, INL).
Local alarm permit handled per Boise, Idaho Falls, or other municipal rule.

This is a buyer-facing reference, not legal advice.

Security service in Idaho

Tec-Tel deploys AI-era security across Idaho with one accountable project manager owning design, install, and service to one standard. The cities below have local service detail, deal sizing, and a free consultation. Don't see yours? We cover the whole state.

Security in Boise, ID

Or browse the full city directory and nationwide coverage map.

Frequent buyer questions

Is Idaho a one-party or two-party consent state for audio recording?

Idaho is a one-party consent state. Idaho Code 18-6702 makes interception of wire, oral, or electronic communications a felony unless one party consents. A participant can lawfully record. Most ID commercial camera installs go video-only on the cameras.

Does Idaho license alarm and security contractors?

Idaho does not have a comprehensive statewide alarm contractor license. Local jurisdictions (Boise, Meridian, Nampa, Idaho Falls) impose alarm permits and registration on alarm businesses. Buyers should verify local permits before signing.

What's the data breach notification rule in Idaho?

Idaho Code 28-51-104 (Idaho Identity Theft Act) requires entities to notify Idaho residents whose personal information was acquired by an unauthorized person. Personal information includes name combined with Social Security number, driver's license, financial account information, biometric data, or similar identifiers.

Does Idaho have a biometric privacy law like Illinois BIPA?

Not as a standalone BIPA-style statute with a private right of action. Coverage in Idaho runs through Idaho Code 28-51-104 (breach notification) for biometric records and through general consumer protection statutes enforced by the Idaho Attorney General. Idaho has not enacted comprehensive consumer privacy legislation as of early 2026.

Do I have to give Idaho employees notice before monitoring them?

Idaho does not have a statute as specific as New York Civil Rights Law 52-c. The general rule is posted notice for common-area camera surveillance, no cameras in restrooms or other private spaces, and one-party consent on any audio capture under Idaho Code 18-6702. Most ID employers issue a single workplace surveillance notice in the handbook.

Does Idaho have a cannabis program with surveillance rules?

Idaho does not have a recreational or medical cannabis program. Industrial hemp is regulated by the Idaho State Department of Agriculture under USDA framework. Operators in the hemp space follow USDA and ISDA rules. Default retention for ID commercial systems with no specific industry rule is 30 days.

Are there special rules for cameras in Idaho schools?

Idaho public schools follow federal FERPA (20 U.S.C. 1232g). The Idaho State Department of Education and the Idaho Office of School Safety and Security provide school safety guidance and grant programs. SVPP and NSGP grant-funded camera projects in ID carry NDAA Section 889 procurement requirements.

Start with a free consultation.

Tell us what you're protecting and what's already in place. The Tec-Tel team reviews it and comes back with a written plan.

Tell us how many sites you run and what's already in place. We'll show you what a build or upgrade looks like.

Straight answers from the team that does the work. We're platform-agnostic, so you get the system that fits your sites, not one brand's catalog.

Since 2010 · 1,000+ deployments nationwide · ISN-accredited

Book a free consultation 855-577-0400

Idaho security and surveillance regulations: what businesses must know

Camera-related state law

Alarm and security contractor licensing

Federal floor for Idaho operators

Biometric data and breach notification

Privacy in the workplace

Video retention requirements

What Tec-Tel does to comply with Idaho regulations

Security service in Idaho

Frequent buyer questions

NDAA Section 889

Washington regulations

Utah regulations

Oregon regulations

Nevada regulations

Start with a free consultation.

How can we help?