Biometric EPIC urges changes to UK ICO’s biometric data guidance 

October 24, 2023

The Electronic Privacy Information Center (EPIC), an advocacy group specializing in privacy and human rights, recently urged the United Kingdom’s Information Commissioner’s Office (ICO) to modify its draft guidance on biometric data, promoting more privacy-protective practices. 

As the UK’s data protection authority, the ICO has developed guidance to instruct organizations on biometric systems and data use, including how the law applies to such use. Still in draft form, this guidance would affect a broad range of companies in and outside the UK. 

In their comments, EPIC makes comprehensive recommendations to the ICO. It suggests that the organization expand its guidance to cover the use and regulation of biometric data, particularly toward law enforcement. 

The group calls for implementing protection procedures for the sale and sharing of biometric data and clear guidelines on how private companies can work with law enforcement when biometric data is involved. They further request human oversight for any law enforcement automated decision-making tools and enhanced security measures, with risk assessment procedures outlined to prevent data breaches. 

Read more here.

Support Our Work

EPIC's work is funded by the support of individuals like you, who allow us to continue to protect privacy, open government, and democratic values in the information age.