104TH GENERAL ASSEMBLY
State of Illinois
2025 and 2026
SB2989
 
Introduced 1/27/2026, by Sen. Linda Holmes
 
SYNOPSIS AS INTRODUCED:
 
New Act
    Creates the DNA Match Notification, Tracking, and Accountability Act. Provides that, no later than one year after the effective date of the Act, the Illinois State Police shall establish and maintain a statewide automated DNA match tracking system to solve cases. Provides that the Illinois State Police may (1) purchase a commercial off-the-shelf software system for tracking if the system meets all of the requirements and (2) apply for federal funding to establish and maintain the automated DNA match tracking system. Provides that the automated DNA match tracking system shall (1) be electronic and cloud-based; (2) receive DNA match notifications from all accredited crime laboratories; (3) automatically route notifications and reminders to designated receiving agencies; (4) record and time-stamp subsequent actions taken by receiving agencies and flag notifications for supervisory review upon missed deadlines or inactivity; (5) produce audit logs, compliance reports, and performance metrics; and (6) ensure data security consistent with applicable privacy and information security laws.


LRB104 17904 RTM 31340 b

 
 
A BILL FOR
 
SB2989LRB104 17904 RTM 31340 b

1    AN ACT concerning government.
 
2    Be it enacted by the People of the State of Illinois, 
3represented in the General Assembly:
 
4    Section 1. Short title. This Act shall be known and may be 
5cited as the DNA Match Notification, Tracking, and 
6Accountability Act.
 
7    Section 5. Purpose. The purpose of this Act is to ensure 
8that all reportable DNA database matches generated by 
9accredited forensic laboratories are promptly communicated to 
10the appropriate law enforcement and prosecutorial agencies, 
11and that the matches receive documented, timely follow-up. 
12This Act establishes an automated tracking system, mandates 
13agency accountability, and improves investigative and 
14prosecutorial efficiency.
 
15    Section 10. Definitions. In this Act:
16    "Automated DNA match tracking system" means the electronic 
17centralized platform established under this Act for the 
18recording, monitoring, and reporting of DNA match 
19notifications and subsequent investigative or prosecutorial 
20actions.
21    "DNA database match" means any confirmed association 
22reported by a crime laboratory between a DNA profile from an 
 
 
SB2989- 2 -LRB104 17904 RTM 31340 b

1evidentiary sample and a known individual or another 
2evidentiary sample in a government-operated DNA database, 
3including, but not limited to, Combined DNA Index System 
4(CODIS) or any State or local DNA index.
5    "Crime laboratory" mean any laboratory accredited to 
6perform forensic DNA analysis for criminal justice purposes.
7    "Notifying agency" means the crime laboratory issuing the 
8DNA database match notification.
9    "Receiving agency" means any law enforcement, 
10prosecutorial, or investigative agency designated to receive 
11DNA match notifications under State or local procedures.
 
12    Section 15. Establishment of automated DNA match tracking 
13system.
14    (a) No later than one year after the effective date of this 
15Act, the Illinois State Police shall establish and maintain a 
16statewide automated DNA match tracking system matches to 
17unsolved cases.
18    The Illinois State Police may:
19        (1) purchase a commercial off-the-shelf software 
20    system for tracking if the system meets all of the 
21    requirements of this Section; and
22        (2) apply for Federal funding to establish and 
23    maintain the automated DNA match tracking system.
24    (b) The automated DNA match tracking system shall:
25        (1) be electronic and cloud-based;
 
 
SB2989- 3 -LRB104 17904 RTM 31340 b

1        (2) receive DNA match notifications from all 
2    accredited crime laboratories;
3        (3) automatically route notifications and reminders to 
4    designated receiving agencies;
5        (4) record and time-stamp subsequent actions taken by 
6    receiving agencies, and flag notifications for supervisory 
7    review upon missed deadlines or inactivity;
8        (5) produce audit logs, compliance reports, and 
9    performance metrics; and
10        (6) ensure data security consistent with applicable 
11    privacy and information security laws.