Minnesota security and surveillance regulations: what businesses must know

Minnesota is a one-party consent state for audio recording under Minn. Stat. 626A.02. The Minnesota Consumer Data Privacy Act (Minn. Stat. 325O), effective July 31, 2025, classifies biometric data as sensitive data requiring opt-in consent. Power-limited technician (PLT) and alarm contractor licensing falls under the Minnesota Department of Labor and Industry (DLI) per Minn. Stat. 326B.33. Minnesota legalized adult-use cannabis in 2023 with the Office of Cannabis Management (OCM) administering the program.

Camera-related state law

The governing audio statute is Minn. Stat. 626A.02, which makes interception of wire, oral, or electronic communications a felony unless a party to the communication consents. Minnesota is a one-party consent state for audio recording.

Video-only surveillance of common areas with posted notice is generally lawful. Minn. Stat. 609.746 (interference with privacy) reaches hidden cameras in places where privacy is reasonably expected. Posted notice at the entrance is the industry standard for any commercial property.

Practical translation. Commercial MN camera installs default to video-only on the cameras and route audio capture through a separate documented intercom or call-recording workflow.

PLT and alarm contractor licensing

The Minnesota Department of Labor and Industry administers Power-Limited Technician (PLT) licensing under Minn. Stat. 326B.33 and related Minnesota Administrative Rules. Companies installing burglar, fire, or low-voltage electronic systems for compensation must employ licensed PLTs and meet contractor registration requirements. The DLI publishes the active license roster at dli.mn.gov.

For commercial buyers, the practical takeaway is that any vendor installing electronic security in Minnesota should provide a current PLT license number and any required contractor registration on the proposal. Local jurisdictions (Minneapolis, St. Paul, Rochester, Duluth) often layer alarm permits on top of state licensure.

Biometric data and the MCDPA

The Minnesota Consumer Data Privacy Act (Minn. Stat. 325O) took effect July 31, 2025. MCDPA applies to controllers conducting business in Minnesota or producing products targeted to Minnesota residents above defined thresholds. The Act classifies biometric data as sensitive data and requires opt-in consent before processing.

For commercial security buyers, the practical reach is fingerprint and facial-recognition access control and any AI camera that builds a faceprint template. MCDPA compliance requires consent, privacy notice, consumer-rights handling, and a data protection assessment for sensitive processing. Enforcement is by the Minnesota Attorney General; there is no private right of action.

Cannabis surveillance (OCM)

Minnesota legalized adult-use cannabis in 2023. The Office of Cannabis Management (OCM) administers the program and publishes camera coverage and retention rules for licensed cannabis businesses. The rules are still evolving as OCM stands up the regulatory framework. Operators should pull the current OCM rules before designing the install. Most MN licensed operators retain at least the OCM minimum and configure VMS retention with a buffer.

Privacy in the workplace

Minnesota does not have a single workplace electronic-monitoring statute as specific as New York's 52-c. Pure video surveillance of common work areas with posted notice is the routine pattern. Cameras in employee-only spaces with a reasonable expectation of privacy are off-limits.

Most MN employers issue a single workplace surveillance notice in the employee handbook. Audio capture is regulated by Minn. Stat. 626A.02. MCDPA reaches employee biometric data at covered controllers.

Video retention requirements

Cannabis. OCM rules set retention for licensed facilities. Pull the current text before designing the install.
Healthcare. HIPAA Security Rule (45 CFR Part 164) governs PHI-touching footage.
Retail and hospitality. PCI-DSS Requirement 9 specifies 90-day retention for the cardholder data environment.
Federal contractors. NDAA Section 889 controls vendor selection.
Schools. FERPA reach for K-12 districts and higher education.

Default retention for MN commercial systems with no specific industry rule is 30 days.

What Tec-Tel does to comply with Minnesota regulations

Video-only on cameras unless audio is documented with one-party consent under Minn. Stat. 626A.02.
Posted surveillance notice at every public entrance.
No cameras in restrooms, locker rooms, dressing rooms, or any space where privacy is reasonably expected.
MCDPA opt-in consent and notice language coordinated with the customer's privacy team for any biometric capture.
Retention configured to the regime that governs the industry (HIPAA, PCI, OCM, NDAA).
NDAA Section 889-compliant vendor selection on federal-touching installs.
PLT-licensed installer work where the install scope triggers Minn. Stat. 326B.33.

This is a buyer-facing reference, not legal advice.

Security service in Minnesota

Tec-Tel deploys AI-era security across Minnesota with one accountable project manager owning design, install, and service to one standard. The cities below have local service detail, deal sizing, and a free consultation. Don't see yours? We cover the whole state.

Security in Minneapolis, MN

Or browse the full city directory and nationwide coverage map.

Frequent buyer questions

Is Minnesota a one-party or two-party consent state for audio recording?

Minnesota is a one-party consent state. Minn. Stat. 626A.02 makes interception of wire, oral, or electronic communications a felony unless a party consents. A participant can lawfully record. Most MN commercial camera installs go video-only on the cameras to keep audio out of scope.

Does Minnesota license alarm and security contractors?

Yes. The Minnesota Department of Labor and Industry administers Power-Limited Technician (PLT) licensing under Minn. Stat. 326B.33 and related rules. Companies installing burglar, fire, or low-voltage electronic systems must employ licensed PLTs and meet contractor registration requirements. Buyers can verify a license at dli.mn.gov.

What does the Minnesota Consumer Data Privacy Act require for biometric data?

MCDPA (Minn. Stat. 325O) took effect July 31, 2025, and applies to controllers conducting business in Minnesota or producing products targeted to Minnesota residents above defined thresholds. The Act classifies biometric data as sensitive data requiring opt-in consent before processing. Covered controllers must provide privacy notice, honor consumer rights (access, deletion, correction, portability, opt-out, profile-decision review), and conduct data protection assessments. Enforcement is by the Minnesota Attorney General; there is no private right of action.

What's the video retention requirement for Minnesota cannabis facilities?

The Minnesota Office of Cannabis Management (OCM) publishes camera coverage and retention rules for licensed cannabis businesses under Minn. Rules and OCM-published guidance. Retention requirements are set in the regulation and operators should pull the current OCM rules before designing the install because the program is in active rollout. Most MN licensed operators retain at least the OCM minimum and configure VMS retention with a buffer.

What's the data breach notification rule in Minnesota?

Minn. Stat. 325E.61 requires entities to notify Minnesota residents whose personal information was acquired by an unauthorized person. Personal information includes name combined with Social Security number, driver's license, financial account, biometric data, or similar identifiers. The Minnesota Attorney General publishes received breach notifications.

Do I have to give Minnesota employees notice before monitoring them?

Minnesota does not have a statute as specific as New York Civil Rights Law 52-c. The general rule is posted notice for common-area camera surveillance, no cameras in restrooms or other private spaces, and one-party consent on any audio capture under Minn. Stat. 626A.02. Most MN employers issue a single workplace surveillance notice in the handbook covering cameras, badge access, computer monitoring, and call recording.

Are there special rules for cameras in Minnesota schools?

Minnesota public schools follow federal FERPA (20 U.S.C. 1232g). The Minnesota Department of Education and the Minnesota School Safety Center provide school-safety guidance. SVPP and NSGP grant-funded camera projects in MN schools and houses of worship carry NDAA Section 889 procurement requirements.

Start with a free consultation.

Tell us what you're protecting and what's already in place. The Tec-Tel team reviews it and comes back with a written plan.

Tell us how many sites you run and what's already in place. We'll show you what a build or upgrade looks like.

Straight answers from the team that does the work. We're platform-agnostic, so you get the system that fits your sites, not one brand's catalog.

Since 2010 · 1,000+ deployments nationwide · ISN-accredited

Book a free consultation 855-577-0400

Minnesota security and surveillance regulations: what businesses must know

Camera-related state law

PLT and alarm contractor licensing

Biometric data and the MCDPA

Cannabis surveillance (OCM)

Privacy in the workplace

Video retention requirements

What Tec-Tel does to comply with Minnesota regulations

Security service in Minnesota

Frequent buyer questions

NDAA Section 889

Wisconsin regulations

Illinois regulations

Iowa regulations

Cannabis security

Start with a free consultation.

How can we help?