The Swedish Data Protection Authority (DPA) fined the municipality of Skelleftea 200,000 Swedish Krona ($20,700) for using facial recognition to track students, in violation of the European Union's General Data Protection Regulation (GDPR).
Anderstorp High School used the technology to track 22 high school students for three weeks, to detect when each individual entered a classroom.
GDPR restricts the use of facial imaging and other technologies to collect biometric data.
The DPA said while the school obtained parents' permission to track the students, that was not legally sufficient to allow the school to capture personal data, as attendance could have been checked without video surveillance.
The DPA said Skelleftea's local authority had illegally processed sensitive biometric data, and failed to complete a sufficient impact assessment.
From BBC News
View Full Article
Abstracts Copyright © 2019 SmithBucklin, Washington, DC, USA
No entries found