Extreme close-up macro photograph of a human eye showing detailed iris patterns

TL;DR: On May 22, 2026, ICE quietly awarded Massachusetts-based BI2 Technologies a $25.1 million sole-source contract for 1,570 handheld iris scanners, up from $4.6 million and roughly 200 devices just eight months earlier. That's a 445% cost increase with zero competitive bidding. The scanners connect to BI2's private Inmate Identification and Recognition System, a database holding over 5 million booking records from 47 states built through partnerships with local sheriff's offices. The contract skipped FedRAMP security clearance, bypassed congressional notification, and includes no provision for independent audits. DHS's own Office of Inspector General launched a probe in February 2026 into how ICE collects, stores, and shares biometric data, but the contract was awarded anyway. Deployment begins late June. An asylum seeker in Chicago has already been deported after agents scanned her irises during a raid.

From $4.6 Million to $25.1 Million in Eight Months

In September 2025, ICE signed a $4.6 million contract with BI2 Technologies for around 200 iris-scanning devices. Standard federal procurement, modest scope, limited deployment [1].

Eight months later, on May 22, 2026, ICE awarded the same company $25.1 million for 1,570 devices. The new contract runs June 1, 2026 through May 31, 2027. No other companies were invited to bid [2].

That's not a budget increase. That's a procurement explosion. The device count jumped nearly 8x. The dollar amount jumped more than 5x. And the mechanism that made it possible, a sole-source award, meant nobody else got to offer a competing price, a competing product, or a competing set of privacy safeguards.

DHS justified the no-bid approach by claiming BI2's iris technology is "certified by the FBI and can be integrated with existing jail and records management systems" [2]. In procurement language, that's a compatibility argument. In plain English: we already use their stuff, so we're buying more of their stuff, and we don't want to explain why to anyone else.

A Private Company's Database of 5 Million People's Eyes

The scanners themselves aren't the story. The database they connect to is.

BI2's Inmate Identification and Recognition System holds over 5 million booking records, arrest and incarceration data gathered from partnerships with local sheriff's offices across 47 states [1]. The handheld devices are wireless and tap into this database in real time. An agent scans someone's iris in the field and gets a match (or doesn't) in seconds.

The system integrates iris recognition, fingerprint analysis, and facial recognition into a single mobile platform, plus driver's license and vehicle plate search capabilities [2]. It's not just an iris scanner. It's a portable, multimodal identification system that cross-references a private company's database.

That database wasn't built by the federal government. It was built by BI2 Technologies over roughly 20 years, through deals with local law enforcement agencies [3]. The data sits on private infrastructure. And here's where it gets ugly: the contract didn't require the system to clear FedRAMP, the federal government's own security review for cloud systems handling sensitive data, before deployment [2].

DHS asked BI2 to submit a draft security plan addressing FedRAMP certification timelines. A draft plan. Not actual clearance. Not even a timeline for clearance. A plan to maybe make a timeline [2].

Five million people's iris records are sitting on a venture capital-backed company's servers with no federal security certification, and ICE just gave that company $25.1 million to keep building.

What Happens When an Agent Points the Scanner at You

We don't have to speculate about how these devices get used. We already have a case study.

In the fall of 2025, federal immigration officers raided an apartment complex in Chicago. They arrived with a Black Hawk helicopter. They pointed guns at families while they slept [4].

Norelly Mejías Cáceres, a Venezuelan asylum seeker, was among those caught in the raid. She lost consciousness during the encounter. Officers scanned her irises while her eyes were swollen from crying. The scan linked her to records in BI2's database. She was detained, processed, and deported to Venezuela [3][4].

Other detainees from the same raid reported that officers suddenly knew personal details about them after the iris scans, information the individuals hadn't volunteered [4].

ICE's official position is that officers use iris recognition to "assist in accurately identifying individuals encountered during immigration enforcement and removal operations, including confirming identities and backgrounds" [3]. That's the sanitized version. The field reality involves helicopter raids, weapons drawn on sleeping families, and biometric scans performed on people in distress.

The Oversight That Doesn't Exist

The $25.1 million contract has no congressional notification requirement. No independent audit provision. No external review mechanism for how the system gets used [5].

In January 2026, House Democrats introduced legislation to restrict mobile biometric surveillance outside ports of entry. It went nowhere [2].

In February 2026, the DHS Office of Inspector General launched an audit examining how ICE collects, stores, and shares biometric data. Three months later, ICE awarded the $25.1 million contract anyway [2].

The OIG probe is technically still active. But probing data practices after you've already signed a $25 million contract to expand those practices is like investigating a building's fire safety after you've already added ten floors.

"This agency has already proven itself to be a rogue agency," said Cooper Quintin of the Electronic Frontier Foundation. "Could ICE start doing iris scannings of everybody they detain and then add that to their database for further surveillance? Yeah, absolutely" [3].

Marianna Poyares, a researcher at Georgetown Law Center, raised a simpler question: "What else is being collected?" [3]. When the scanners are multimodal, iris, fingerprint, facial recognition, driver's license lookups, plate searches, the answer could be anything, and there's no external mechanism to check.

Nicole Hallett, a law professor at the University of Chicago, pointed out that the technology in Chicago was deployed to identify people who were "illegally arrested", meaning the biometric data collection itself may have been unlawful [4].

Who Is BI2 Technologies?

BI2 Technologies is a Massachusetts-based, venture capital-backed company that has been building iris recognition technology for about 20 years [3]. They're not a defense giant. They're a specialist biometrics firm that found a lucrative niche.

During the first Trump administration, BI2 donated iris scanners to the Southwestern Border Sheriffs' Coalition, giving law enforcement agencies free hardware that locked them into BI2's database ecosystem [3]. It's the razor-and-blades model applied to biometric surveillance: give away the device, sell access to the data.

Those sheriff's office partnerships are how BI2 built the 5 million-record database in the first place. Local jails scan inmates' irises at booking. That data flows into BI2's private system. Then the federal government pays $25.1 million to search it [1][2].

The company has no public FedRAMP authorization. Its database sits on private infrastructure outside direct government control. And it's the sole vendor for the largest iris biometric deployment in U.S. immigration enforcement history.

The Biometric Pipeline Nobody Voted For

ICE already uses facial recognition, license plate readers, cell phone location trackers, and the Palantir-built FALCON system. Iris scanning is the newest layer in a surveillance stack that's been growing for years without a single piece of comprehensive legislation governing how it all fits together [3].

The pattern is consistent. A new biometric technology gets piloted at small scale. A modest contract establishes the vendor relationship. Then the contract quintuples, the device count explodes, and the deployment happens before oversight catches up.

1,570 iris scanners deploy to ICE field agents starting late June 2026 [5]. Each scan feeds BI2's private database. Each match (or non-match) becomes part of an expanding biometric record that no independent auditor has reviewed, no congressional committee has been formally notified about, and no federal security framework has cleared.

Maria Villegas Bravo of the Electronic Privacy Information Center criticized DHS for its "vague" public statements about the program [4]. That vagueness isn't a communication failure. It's a feature. The less specific the agency is about how 5 million iris records get searched, stored, and shared, the harder it is for anyone to challenge the practice.

The next contract cycle starts June 2027. Based on the trajectory, $4.6 million to $25.1 million in eight months, don't be surprised when the number has another zero on it.

What You Can Do

  • Know your rights. You are not required to consent to biometric scanning during a street encounter. ICE agents may do it anyway, but refusal is not a crime. The ACLU's "Know Your Rights" guide covers immigration encounters specifically.
  • Document encounters. If you witness ICE using biometric devices, record what you can safely. Advocacy organizations like the National Immigration Law Center track these incidents.
  • Contact your representatives. The House Democrats' January 2026 legislation to restrict mobile biometric surveillance died quietly. Ask your congressional representative why, and whether they'll introduce new legislation.
  • Support oversight organizations. The EFF, EPIC, Georgetown Law's Center on Privacy and Technology, and the ACLU are among the few organizations actively tracking ICE's biometric expansion.
  • Follow the OIG probe. The DHS Office of Inspector General's February 2026 audit of ICE biometric practices should eventually produce a public report. Watch for it at oig.dhs.gov.

Sources

  1. FedScoop, "ICE to Spend $25M on Iris Recognition Technology"
  2. ID Tech Wire, "ICE Awards $25.1M No-Bid Iris-Scanning Contract to BI2 Technologies"
  3. NPR/KGOU, "ICE Is Spending Millions of Dollars on Iris Scanners, Expanding Its Arsenal of Tech Tools"
  4. The Mary Sue, "ICE Just Dropped $25 Million on Iris Scanners and the Way They're Using Them Is Already Haunting Immigrants in Chicago"
  5. Project Saltbox, "ICE Awards $25 Million Iris-Scanning Contract to Bi2 Technologies"