130
submitted 1 year ago by leraje to c/privacy@lemmy.ml

"A company which enables its clients to search a database of billions of images scraped from the internet for matches to a particular face has won an appeal against the UK's privacy watchdog.

Last year, Clearview AI was fined more than £7.5m by the Information Commissioner's Office (ICO) for unlawfully storing facial images.

Privacy International (who helped bring the original case I believe) responded to this on Mastodon:

"The first 33 pages of the judgment explain with great detail and clarity why Clearview falls squarely within the bounds of GDPR. Clearview's activities are entirely "related to the monitoring of behaviour" of UK data subjects.

In essence, what Clearview does is large-scale processing of a highly intrusive nature. That, the Tribunal agreed.

BUT in the last 2 pages the Tribunal tells us that because Clearview only sells to foreign governments, it doesn't fall under UK GDPR jurisdiction.

So Clearview would have been subject to GDPR if it sold its services to UK police or government authorities or commercial entities, but because it doesn't, it can do whatever the hell it wants with UK people's data - this is at best puzzling, at worst nonsensical."

you are viewing a single comment's thread
view the rest of the comments
[-] A1kmm@lemmy.amxl.com 3 points 1 year ago

Data being public (and privacy in general) shouldn't be 'all or none'. The problem is people joining the dots between individual bits of data to build a profile, not necessarily the individual bits of data.

If you go out in public, someone might see you and recognise you, and that isn't considered a privacy violation by most people. They might even take a photo or video which captures in the background, and that, in isolation isn't considered a problem either (no expectation of privacy in a public place). But if someone sets out to do similar things at a mass scale (e.g. by scraping, or networking cameras, or whatever) and piece together a profile of all the places you go in public, then that is a terrible privacy violation.

Now you could similarly say that people who want privacy should never leave home, and otherwise people are careless and get what they deserve if someone tracks their every move in public spaces. But that is not a sustainable option for the majority of the world's population.

So ultimately, the problem is the gathering and collating of publicly available personally identifiable information (including photos) in ways people would not expect and don't consent to, not the existence of such photos in the first place.

this post was submitted on 20 Oct 2023
130 points (100.0% liked)

Privacy

31982 readers
245 users here now

A place to discuss privacy and freedom in the digital world.

Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.

In this community everyone is welcome to post links and discuss topics related to privacy.

Some Rules

Related communities

Chat rooms

much thanks to @gary_host_laptop for the logo design :)

founded 5 years ago
MODERATORS