Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Compliance

EU Privacy Groups Set Sights on Facial Recognition Firm

Privacy organisations on Thursday complained to regulators in five European countries over the practices of Clearview AI, a company that has built a powerful facial recognition database using images “scraped” from the web.

Privacy organisations on Thursday complained to regulators in five European countries over the practices of Clearview AI, a company that has built a powerful facial recognition database using images “scraped” from the web.

Clearview’s use of images — including those from people’s social media accounts — to offer biometrics services to private companies and law enforcement “goes far beyond what we could ever expect as online users”, Ioannis Kouvakas, legal officer at Privacy International, said in a statement.

While Clearview touts its technology’s ability to help law enforcement, its critics say facial recognition is open to abuse and could ultimately eliminate anonymity in public spaces — pointing to cases like China’s massive public surveillance system.

Facial recognition has also been attacked for failing to distinguish non-white people’s faces and women as well as it can identify white, male images — potentially leading to false positives.

Alongside three other digital rights organisations, PI has filed complaints with data regulators in France, Austria, Italy, Greece and Britain.

“We expect them to join forces in ruling that Clearview’s practices have no place in Europe, which would have meaningful ramifications for the company’s operations globally,” PI said.

In February, Canada’s privacy commissioner found that the firm’s activity “is mass surveillance and it is illegal” under the country’s privacy laws.

And British and Australian privacy watchdogs last year launched a joint probe of their own.

Advertisement. Scroll to continue reading.

“Just because something is ‘online’ does not mean it is fair game to be appropriated by others in any which way they want to — neither morally nor legally,” said Alan Dahi, a data protection lawyer at Austrian privacy group Noyb.

Clearview came to public prominence in a January 2020 New York Times report that detailed how it was already working with law enforcement, including the US FBI and Department of Homeland Security.

On its website, it boasts the “largest known database of 3+ billion facial images sourced from public-only web sources, including news media, mugshot websites, public social media, and many other open sources”.

Founder Hoan Ton-That acknowledged to the NYT at the time that Clearview was breaching the terms of service of Facebook and other social media sites by gathering users’ photos.

Facebook, Twitter, YouTube (Google) and LinkedIn (Microsoft) have all protested against Clearview’s practices.

And last year, tech firms including Microsoft and Amazon suspended sales of facial recognition software to police forces when confronted with 2020’s Black Lives Matter movement.

Amazon last week extended the original one-year moratorium “until further notice”.

But “tools for conducting facial recognition are widely available” even outside the big tech companies, according to journalist Nicolas Kayser-Bril, who complied a report on the technology for advocacy group AlgorithmWatch last year that found at least 10 European police forces using it.

Related: Facial Recognition Company Sued by California Activists

Related: Facial Recognition: IT and Police in Delicate Dance

Related: States Push Back Against Use of Facial Recognition by Police

Written By

AFP 2023

Click to comment

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

Expert Insights

Related Content

Compliance

The three primary drivers for cyber regulations are voter privacy, the economy, and national security – with the complication that the first is often...

Compliance

Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...

Artificial Intelligence

Two of humanity’s greatest drivers, greed and curiosity, will push AI development forward. Our only hope is that we can control it.

Application Security

Virtualization technology giant VMware on Tuesday shipped urgent updates to fix a trio of security problems in multiple software products, including a virtual machine...

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Cybersecurity Funding

Los Gatos, Calif-based data protection and privacy firm Titaniam has raised $6 million seed funding from Refinery Ventures, with participation from Fusion Fund, Shasta...

Compliance

Web scraping is a sensitive issue. Should a third party be allowed to visit a website and use automated tools to gather and store...

Cloud Security

Proofpoint removes a formidable competitor from the crowded email security market and adds technology to address risk from misdirected emails.