Synopsis As Introduced Creates the Illinois Privacy Rights Act. Defines terms such as "biometric data", "consumer", "controller", "deidentified data", and "processor". Creates a consumer protection of privacy in which, with some exceptions, provides an individual with the right to: (i) confirm whether or not a controller is processing the consumer's personal data and access such personal data; (ii) correct inaccuracies in the consumer's personal data; (iii) delete personal data provided by or obtained about the consumer; (iv) obtain a copy of the consumer's personal data processed by the controller in a portable and, to the extent technically feasible, readily usable format; and, (v) opt out of the processing of the personal data for purposes of targeted advertising, the sale of personal data, or profiling in furtherance of solely automated decisions that produce legal or similarly significant effects concerning the consumer. Defines a consumer as a resident of this State excluding an individual acting in commercial or employment context. Provides that this Act applies to persons that conduct business in this State or persons that produce products or services that are targeted to residents of this State that during a 1-year period: (i) controlled or processed the personal data of not less than 35,000 unique consumers, excluding personal data controlled or processed solely for the purpose of completing a payment transaction; or (ii) controlled or processed the personal data of not less than 10,000 unique consumers and derived more than 25% of their gross revenue from the sale of personal data. Provides that the Attorney General has the exclusive authority under this Act to enforce violations of it. Makes a violation of this Act an unfair method of competition or any unfair or deceptive act or practice under the Consumer Fraud and Deceptive Business Practices Act. Prohibits a private cause of action under this Act. Effective January 1, 2025.