We stand with Ukraine and our team members from Ukraine.

A Community Of Over 740,000

Home ›› Neuroscience ›› Brain Computer Interfaces (BCIs)

Brain Computer Interfaces (BCIs)

by Charles Adjovu
3 min read
Share this post on



The emergence of privacy risks and data ownership opportunities as we augment the brain.

What is a Brain Computer Interface (BCI)?

Brain-computer interfaces (BCIs) are interfaces for recording and processing neurological data and turning these data into an output, e.g., a signal to control an external device [1].

BCIs can be categorized based on two dimensions:

  1. actions based on brain activity, and
  2. invasiveness [1].

The benefits or use-cases of BCIs are:

  1. diagnosing medical conditions (e.g., depression),
  2. modulating brain activity to deal with neurological conditions, and
  3. improving accessibility for individuals with a disability through connection to external support devices such as a robotic arm [1].

What is neurodata?

Brain Computer Interfaces (BCIs)
Photo by Bret Kavanaugh on Unsplash

Neurodata is data about neurological activity [1]. Neurodata can be directly recorded, e.g., by a BCI, or indirectly recorded, e.g., an individual’s spinal cord [1]. Inferences on neurodata via AI/ML algorithms can infer an individual’s mood, physiological characteristics, and arousal [1]. Neurodata can personally identify an individual by itself or when paired with other data associated with the individual [1].

What are the privacy risks associated with BCIs?

Brain Computer Interfaces (BCIs). Privacy
Photo by Bernard Hermant on Unsplash

The privacy risks include:

  1. Unauthorized access to personal information and inferences on such data,
  2. The ability to infer conclusions about an individual even beyond their mental thoughts to their specific biology and preferences,
  3. The use of neurodata, by itself or in association with other personally identifying information, in decision-making by third parties concerning the individual without the individual’s consent or knowledge, and
  4. Use of neurodata for marketing purposes and selling goods or services [1].

Additionally, neurodata raises legal risks concerning Health Insurance Portability and Accountability Act (HIPAA) and the General Data Protection Regulation (GDPR) [1]. Neurodata would fall under concerns because neurodata would fall under HIPAA’s definition of personally identifying information, thus requiring entities that process neurodata to also determine whether they are a covered entity (e.g., a physician or hospital) under HIPAA or a third party that must comply with certain HIPAA regulations because of a business relationship with a covered entity [1, 2]. Generally, HIPAA does not apply to wellness companies that manufacture wellness devices [1].

Neurodata is subjected to the GDPR in Europe because neurodata can be considered personal data (health data or biometric data), thus requiring lawful grounds for processing an individual’s neurodata [1].

Some additional concerns also arise when determining whether fault lies with the BCI device user or the BCI device (e.g., in the case of a malfunction) in an incident where a BCI device user causes harm to another person or property [5].

What are the Governance or Technical Solutions for Data Ownership and Privacy?

Brain Computer Interfaces (BCIs). The picture of a person with a brain.Data
Photo by Claudio Schwarz on Unsplash

Some potential solutions to these privacy risks that can ensure data ownership for BCI device users include:

  1. Encryption: encrypt a user’s neurodata on the BCI device so that other people cannot decipher it. Additionally, the use of end-to-end encryption (E2EE) when neurodata is shared between a BCI device user and a third party or cloud server [1];
  2. Local-first software: ensuring that neurodata is stored locally on the user’s device, with permissions for cloud access from applications [5];
  3. Separation of data and compute (or edge computing): have BCI devices utilize edge computing so that BCI users do not need to share their data directly with a server (but can send their results to a cloud server) for inferences on their neurodata to be conducted with a AI/ML algorithm, [1, 3, 6];
  4. Access control layer: through blockchain technology, it is possible to use smart contracts to provide an access control and identity layer for neurodata that can prevent unwanted access of neurodata by third parties [3]; and
  5. Data cooperatives: BCI device users can create a cooperative to manage and govern their data, and can interact and provide a forum for stakeholders, including researchers, technologists, and users, to discuss ethical issues in sharing and using neurodata [6, 7]


  1. https://fpf.org/blog/bci-technical-and-policy-recommendations-to-mitigate-privacy-risks/
  2. https://fpf.org/blog/bcis-data-protection-in-healthcare-data-flows-risks-and-regulations/
  3. https://www.personal.ai/privacy
  4. http://learn.neurotechedu.com/introtobci/#ethics
  5. https://www.inkandswitch.com/local-first/
  6. https://polypoly.coop/en-de/FAQ/#polyPod
  7. https://www.midata.coop/en/cooperative/
post authorCharles Adjovu

Charles Adjovu,

Recently admitted attorney looking for opportunities in intellectual property, privacy and data security, blockchain and cryptocurrencies, and legal technology. Researching the legal implications and applications of emerging technologies is one of my passions, and I am always looking for new projects and collaborators that work in this intersection. Other than researching the legal implications of emerging technologies, I am also studying the use of emerging technology to help the legal profession (i.e., legaltech), with my favorite use so far being Casetext's CARA. I currently actively manage Ledgerback, a member-driven digital platform for research, analytics and education in blockchain, decentralization, and cooperativism. I and my other co-founders decided to start Ledgerback to help Nevadans learn about the benefits of blockchain technology, and actively grow the literature in the field (with my interests generally falling on the legal and utility applications of blockchain).

Ideas In Brief
  • Brain-computer interfaces (BCIs) are interfaces for recording and processing neurological data and turning these data into an output.
  • Neurodata can be directly recorded, e.g., by a BCI, or indirectly recorded, e.g., an individual’s spinal cord.
  • There are particular privacy risks associated with BCIs that might need the following solutions:
    1. Encryption
    2. Local-first software
    3. Separation of data and compute (or edge computing)
    4. Access control layer
    5. Data cooperative

Related Articles

Article by Jessica Sherratt
Understand And Define Users With The User Profile Model
  • The article covers the evolution of user research and the importance of effective personas, as it explores the user profile model and how it can help teams gain valuable insights to create customer-centric products and services.
Share:Understand And Define Users With The User Profile Model
11 min read
Article by Jim Ekanem
Why We Need 11 Usability Heuristics
  • The article critically examines the 10 Usability Heuristics by Jakob Nielsen, highlighting their limitations in addressing current technological advancements and societal contexts.
  • The author proposes an additional heuristic called “Accessibility and Inclusion” to bridge the gap and emphasize the need for designers to prioritize equal access and consider social identities and biases.
Share:Why We Need 11 Usability Heuristics
9 min read

Part of a series on prototyping with generative AI.

Article by Juliette Laroche
Designing Materials for Better Storytelling with Generative AI
  • This article discusses the role of materials in product design, the concept of designing new materials, and the use of digital tools and AI in material development.
  • The author highlights the impact of materials on product storytelling and encourages designers to consider materials in their design process, envisioning a desired world through material design.
Share:Designing Materials for Better Storytelling with Generative AI
4 min read

This website uses cookies to ensure you get the best experience on our website. Check our privacy policy and