![]() ![]() Enforcing fines on companies without an EU base does present a regulatory challenge, however.Ĭlearview has been contacted for comment on the CNIL’s order. Under GDPR, DPAs can issue fines as high as €20 million or up to 4% of a company’s annual global revenue, whichever is higher. If the company does not comply with the French order CNIL warns it could face further regulatory action - which would include the possibility of a fine. Here CNIL found Clearview is breaching the regulation in a number of ways - such as by limiting individual’s data access rights to twice a year “without justification” or limiting it to data collected during the preceding 12 months or only responding to certain requests after “an excessive number of requests from the same person”.Ĭlearview has been ordered to make sure it properly facilitates data subjects’ rights, including complying with requests to delete people’s data. France has slapped a 20-million-euro fine on US firm Clearview AI for breaching privacy laws, as pressure mounts on the controversial facial-recognition. 05:48 PM, from Slashdot Controversial facial recognition company, Clearview AI, which has amassed a database of some 10 billion images by scraping selfies off the Internet so it can sell an identity-matching service to law enforcement, has been hit with. It also received complaints from individual over a number of “difficulties” encountered in trying to obtain their GDPR data access rights. France Latest To Slap Clearview AI With Order To Delete Data Thursday December 16, 2021. PARIS, Dec 16 (Reuters) - French data privacy watchdog CNIL has ordered U.S. “These people, whose photographs or videos are accessible on various websites and social networks, would not reasonably expect their images to be processed by to feed a facial recognition system that can be used by states police purposes,” CNIL writes (translated from French). The Article 6 breach is because Clearview does not obtain consent from people to use their facial biometrics, nor can it rely on a legitimate interest legal basis for collecting and using this data either - given what CNIL describes as the massive scale and “particularly intrusive” nature of the processing it’s carrying out. TechCrunch - Clearview AI, the controversial facial recognition firm that scrapes selfies and other personal data off the Internet without consent to feed. Two breaches of the GDPRįrance’s CNIL found that Clearview committed two breaches of the GDPR - violating Article 6 (the lawfulness of processing) by collecting and using biometric data without a legal basis and breaching a variety of data access rights set out out in Articles 12, 15 and 17. ![]() This year Clearview’s service has already been ruled in breach of privacy rules in Canada, Australia and the UK (which, post-Brexit, sits outside the EU but retains the GDPR in national law for now) - where it’s facing a possible fine and was also ordered to delete user data last month. ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |