This bill would prohibit certain covered entities that maintain biological data or neural data from transferring or disclosing a consumer's biological data or neural data to a third party without the express consent of the consumer. This bill would prohibit a covered entity from using a consumer's biological data or neural data for a purpose other than what is necessary to perform the services or provide the goods requested by the consumer. This bill would prohibit a covered entity from marketing to a consumer based on the consumer's biological data or neural data. This bill would require a covered entity to notify a consumer before his or her biological data or neural data is otherwise transferred, disclosed, or used, and would provide the consumer the ability to limit or prevent the transfer, disclosure, or use of the data. This bill would also allow the Consumer Interest Division of the Office of the Attorney General to enforce this act and levy a civil penalty of $3,000 per violation.