FB pixel

Irish Minister faces questions about government use of facial imaging software in card issuance program

| Chris Burt
Categories Biometrics News  |  Government Services
 

Ireland’s Minister for Employment Affairs and Social Protection Regina Doherty has responded to questions in parliament about the use of facial imaging software by her Ministry to detect potential identity fraud, saying it complies with EU law, The Irish Times reports.

The questions were submitted by TD Catherine Murphy of the Social Democrats following the removal of a reference to biometric data processing from the privacy statement of the Ministry website. The Ministry is collecting personal data form people in Ireland in order to issue Public Service Cards, of which 3 million have been issued so far. Facial images are included on the cards, and also added to an image-matching database.

The reference to biometrics was removed from the website on the instruction of the Ministry’s secretary general, and Doherty was questioned about whether the Ministry process meets the definition of biometric processing provided by the EU’s General Data Protection Regulation (GDPR). She answered that the card issuing process does not involve any “special category data,” which is the category GDPR places biometrics in. A separate process does, however, create an arithmetic template to compare for potential identity fraud detection, she said.

“This arithmetic template is not stored on the public services card, does not form part of the public service identity set, and is not shared with any other third party. They are stored only in the facial image matching software’s database held in the department’s own secure data centres,” Doherty said. “The department is satisfied that its use of facial imaging software is compliant with the law and is covered by the current legislative framework including the GDPR, the Social Welfare Consolidation Act, and the Data Protection Act 2018.”

If the Ministry was processing biometric data, it would be required to show compliance with specific legal conditions. The change to the website privacy policy was made in order to alleviate confusion, Doherty said.

Many organizations are not clear on their responsibilities under GDPR, and the role of third parties capturing or managing personal information is one of the regulation’s poorly understood aspects, according to a recent blog post by Jumio.

Article Topics

 |   |   |   | 

Latest Biometrics News

 

Face biometrics use cases outnumbered only by important considerations

With face biometrics now used regularly in many different sectors and areas of life, stakeholders are asking questions about a…

 

Biometric Update Podcast explores identification at scale using browser fingerprinting

“Browser fingerprinting is this idea that modern browsers are so complex.” So says Valentin Vasilyev, Chief Technology Officer of Fingerprint,…

 

Passkeys now pervasive but passwords persist in enterprise authentication

Passkeys are here; now about those passwords. Specifically, passkeys are now prevalent in the enterprise, the FIDO Alliance says, with…

 

Pornhub returns to UK, but only for iOS users who verify age with Apple

In the UK, “wanker” is not typically a term of endearment. However, the case may be different for Pornhub, which…

 

Europol operated ‘shadow’ IT systems without data safeguards: Report

Europol has operated secret data analysis platforms containing large amounts of personal information, such as identity documents, without the security…

 

EU pushes AI Act deadlines for high-risk systems, including biometrics

The EU has reached a provisional agreement on changes to the AI Act that postpone rules on high-risk AI systems,…

Comments

Leave a Reply

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Continue Reading

Biometric Market Analysis and Buyer's Guides

Most Viewed This Week

Featured Company

Learn More

Biometrics Insight, Opinion

Digital ID In-Depth

Biometrics White Papers

Biometrics Events