Bad News for Face Recognition (FTC)

By: John Honovich, Published on Oct 22, 2012

Cold water is being thrown on renewed dreams of using facial recognition and demographic analysis. This time it is coming from an unlikely source and country. The United States Federal Trade Commission has issued 'best practices' that recommend fairly stringent approaches that could have a chilling effect on the use of these emerging technologies. This is all the more surprising given that the US has a much more relaxed general stance on privacy issues than the European Union. In this note, we dig through recommendations and the ones with the most practical impact for IP camera use.

Potential Impacts

Of the dozen recommendations made in the full FTC "Facing Facts' report, three of them may apply to IP cameras.

First, the FTC recommends receiving 'affirmative express consent when collecting a person's biometric data:

"Obtain a consumer’s affirmative express consent before using a consumer’s image or any biometric data derived from that image in a materially different manner than they represented when they collected the data"

This could be a significant problem because in surveillance, consumers typically have no idea that facial recognition is occurring and certainly never express 'affirmative consent'. On the web, this is more straightforward to accomplish as a person is interacting with a site. However, with surveillance cameras this could result in a shutdown of facial recognition systems if followed.

Second, adding signs that disclaim the use of demographic detection is recommended:

"Companies using digital signs capable of demographic detection – which often look no different than digital signs that do not contain cameras – should provide clear notice to consumers that the technologies are in use, before consumers come into contact with the signs."

In the case study, the FTC emphasizes that the sign should be prominent:

"Depending upon the size of the store, the notice may be a prominent notice at the entrance to the store itself or at the entrance to a particular section of the store – and on or near the sign itself"

Get Notified of Video Surveillance Breaking News
Get Notified of Video Surveillance Breaking News

The grey area here is that the examples are for displaying live ads. Potentially a VMS or video analytics supplier could claim an exception if it is only being used to chart demographic trends

Finally, a vague practice is encouraged about retention periods:

"Should establish and maintain appropriate retention and disposal practices for the consumer images and biometric data that they collect."

However, since no quantitative metrics nor further guidelines or given, this may be easier for providers to defend or justify.

Not Relevant to Surveillance / Camera Use

A handful of other recommendations might apply but, in practice, are not typically relevant.

Sharing biometric information is against best practices:

"Companies should not use facial recognition to identify anonymous images of a consumer to someone who could not otherwise identify him or her, without obtaining the consumer’s affirmative express consent."

Since security applications is typically limited to only use by security this is unlikely to be an issue.

Additionally, restrictions are recommended for camera placement:

"Companies developing digital signs equipped with cameras using facial recognition technologies should consider carefully where to place such signs and avoid placing them in sensitive areas, such as bathrooms, locker rooms, health care facilities, or places where children congregate."

However, facial recognition cameras are not typically placed in such areas.

Finally, protection is recommended:

"Companies that store such images should consider putting protections in place that would prevent unauthorized scraping"

However, 'scraping' is an issue of information posted on websites whereas most network cameras are used in internal networks only.

Questions of Enforcement

However, the FTC does not have legal authority as they disclaim:

"To the extent the recommended best practices go beyond existing legal requirements, they are not intended to serve as a template for law enforcement actions or regulations under laws currently enforced by the FTC."

As such, regardless of what an organization does, they will not likely be going to jail. However, the FTC does have the power to fine plus not following these guidelines can increase litigation risks. The biggest issue will likely be a practical one as potential buyers consider what risks they take if they are seen as violating FTC best practices.

Comments : Members only. Login. or Join.

Related Reports

Arcules CEO Retracts False GDPR Claim + Dahua and Milestone Claims Examined on Dec 03, 2019
Arcules CEO has retracted a false claim about his organization being a "fully compliant GDPR company" after IPVM reporting (Arcules CEO Threatens...
France Declares School Facial Recognition Illegal Due to GDPR on Oct 31, 2019
France is the latest European country to effectively prohibit facial recognition as a school access control solution, even with the consent of...
UK Facewatch GDPR Compliance Questioned on Aug 27, 2019
Even as the GDPR strictly regulates biometrics, a UK company called Facewatch is selling anti-shoplifter facial recognition systems to hundreds of...
First GDPR Facial Recognition Fine For Sweden School on Aug 22, 2019
A school in Sweden has been fined $20,000 for using facial recognition to keep attendance in what is Sweden's first GDPR fine. Notably, the fine is...
Cisco Settles False Claims Act Suit For Video Surveillance Vulnerabilities on Aug 01, 2019
Cisco entered the video surveillance market in 2007 and suffered for many years through a variety of its own errors and arrogance. The conclusion...
New GDPR Guidelines for Video Surveillance Examined on Jul 18, 2019
The highest-level EU data protection authority has issued a new series of provisional video surveillance guidelines. While GDPR has been in...
First Video Surveillance GDPR Fine In France on Jul 08, 2019
The French government has imposed a sizeable fine on a small business for violating the GDPR after it constantly filmed employees without informing...
Security / Privacy Journalist Sam Pfeifle Interview on May 24, 2019
Sam Pfeifle is best known as the outspoken former Editor of Security Systems News. After that, he was publications director at the International...
San Francisco Face Recognition Ban And Surveillance Regulation Details Examined on May 14, 2019
San Francisco passed the legislation 8-1 today. While the face recognition 'ban' has already received significant attention over the past few...
UK Camera Commissioner Calls for Regulating Facial Recognition on Apr 15, 2019
IPVM interviewed Tony Porter, the UK’s surveillance camera commissioner after he recently called for regulations on facial recognition in the...

Most Recent Industry Reports

IPVM's 12th Anniversary - Thank You! on Apr 07, 2020
IPVM is proud to celebrate it's 12 anniversary expanding our commitment to providing the industry independent and objective information on video...
Mobotix Thermal Body Temperature Detection Examined on Apr 07, 2020
Mobotix has jumped into the Coronavirus temperature detection market, but how do they compare to thermal incumbents like FLIR or ICI who have been...
Verkada Coronavirus Response: Free Temp Systems For Government and Health Care on Apr 07, 2020
Verkada has built a reputation on giving away things for free - free Yeti Tumblers, free trial cameras and now free temporary systems for...
Hikvision USA Refuses, Dahua USA Drives Forward With "Coronavirus Cameras" on Apr 07, 2020
Both have been federally banned, both sanctioned for human rights abuses but only one - Dahua - is taking aim at the booming "coronavirus cameras"...
China Surveillance Vulnerabilities Being Used To Attack China, Says China on Apr 07, 2020
While China video surveillance vulnerabilities have been much debated in the West in the past few years, China is now saying those vulnerabilities...
USA ICI Elevated Skin Temperature Detectors Examined on Apr 06, 2020
Infrared Cameras, Inc. (ICI) is aiming to help slow the spread of COVID-19 with "pinpoint accurate skin temperature measurement" using their...
Trade Groups Request NDAA Blacklist Delay Citing Coronavirus on Apr 06, 2020
Two trade groups representing government contractors have asked Congress to delay implementation of the NDAA's 'blacklist' clause from this August...
Coronavirus Hits Manufacturers, Standing Now, Worse To Come on Apr 06, 2020
Coronavirus is hitting security manufacturers, though overall modestly for now, with worse expected to come, new IPVM survey results...
FLIR New Coronavirus Prioritized Temperature Screening Camera Examined on Apr 03, 2020
FLIR has announced a new series of thermal cameras "prioritized for entities working to mitigate the spread of COVID-19 virus", the A400/A700...
ADI Branch Burglary on Apr 03, 2020
A security systems distributor branch is an odd target for burglary but that happened this week at ADI's Memphis location. Vehicle Smash &...