Feeds

Facebook facial recognition tech 'violates' German privacy law

Social network dismisses Hamburg's data protection claims

Remote control for virtualized desktops

Facebook has rejected claims that its facial recognition technology violates German and EU privacy laws.

Hamburg's data protection authority (DPA) warned (PDF, in German) the dominant social network, which quietly rolled the software into European versions of Facebook earlier this year, that it could be fined if the company failed to delete the "biometric data" it harvests from the tech.

Dr Johannes Caspar, who is Hamburg's data protection commissioner, asked Facebook to "respond quickly" to the regulator's demands.

He said the DPA had "repeatedly" asked Facebook to shut down the facial recognition function.

Facebook's spokeswoman in Germany, Tina Kulow, gave The Register this statement:

"We will consider the points the Hamburg Data Protection Authority have made about the photo tag suggest feature but firmly reject any claim that we are not meeting our obligations under European Union data protection law," she said.

"We have also found that people like the convenience of our photo tag suggest feature which makes it easier and safer for them to manage their online identities."

The tech itself is switched on by default within the closed-off network, which means users have to update their privacy settings within the site to "opt out" of the function. The facial recognition software debuted in the US late last year when Facebook at least had the courtesy to pen a blog post about the feature.

But it failed to do the same thing when the software was folded into the website on this side of the Atlantic in June.

Instead it posted a short retrograde update here, only after Europeans began to protest against its unannounced arrival.

The likes of the UK's Information Commissioner said at the time that it was "looking into" the stealth bolt-on of the facial recognition tech into Facebook.

"The privacy issues that this new software might raise are obvious and users should be given as much information as possible to give them the opportunity to make an informed choice about whether they wish to use it," it told us in June.

"We are speaking to Facebook about the privacy implications of this technology," it added.

But, in contrast to Hamburg's DPA, the ICO won't be getting tough with Facebook.

"We have received few if any complaints about this issue so far, however if anyone has any concerns then they can make a complaint to us and we will look into their case further," a spokesman at the watchdog told El Reg earlier this week.

Germany's actions against Facebook, meanwhile, echo its earlier complaints about Google's data slurp via its Street View cars, which led to the world's biggest ad broker reversing its vehicles out of the country. ®

Choosing a cloud hosting partner with confidence

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Reducing the cost and complexity of web vulnerability management
How using vulnerability assessments to identify exploitable weaknesses and take corrective action can reduce the risk of hackers finding your site and attacking it.
Saudi Petroleum chooses Tegile storage solution
A storage solution that addresses company growth and performance for business-critical applications of caseware archive and search along with other key operational systems.