GDPR / ICO Complaint Filed Against Dahua

By IPVM Team, Published Jun 27, 2019, 09:57am EDT

ICO GDPR Dahua Complaint thumbnail

IPVM has filed a GDPR complaint against Dahua UK's facial recognition conducted at their booth during this year's IFSEC show.

In this post, we explain the reasoning behind the complaint and the difference between this one and the one we made last year, including:

  • Complaint Cause
  • Conference vs Exhibitors
  • Most Egregious
  • Previous Dahua GDPR Claims
  • Reasoning

Overall, we hope our case adds clarity on how facial recognition can be used under GDPR.

**************

** ***** ****, *****'* booth (***** ** ******* on **** **) ******** live ****** *********** ***** filmed ****** *** ******** their *****, ********** *** results ** * ** screen:

***** ********* ****** *********** on **** ******** ****, attempting ** ***** **** or ********* **** ** a '********' ** *** excerpt ***** *****:

*******, ***** *** *** obtain *** ******* ** people ********, *** *** it **** *** ************* for *** ********** **** IPVM ********. ********, **** saw ** ***** **** Dahua ********** ********** ********** was ****** ***** ******.

****, ** *** *******, is * ***** ********* of *** ****, ************ * ************* ********** ****** *** a *** **********.********* *** **** ********* that * ***** ** a ******** ********** ***** conceivably ***. *** **** states ********** ********** ** permissible **:

*** **** ******* ***given ******** ******* to the processing of those personal data for one or more specified purposes

*********, ** **** ***** a ********* ******* ***** for ********* *** **** to *** **'* **** protection ****** -*** *********** ************'* ******(***) - *** ************* ********* ****.

IFSEC ********** ** **********

** ****,**** ***** * **** complaint******* *****'* ********** (***) after ** ******** ***** and ***** ******* ****** recognition ***** ******* ***** consent **** *********.

*** *********** *** *********** *** ***** **** IFSEC ********** **** *** responsible *** *** ******' demos. ******, ** *** the ********* ***** *** demos ********** **** **** liable. **** ** *** this ****, ** ***** the ********* ******* ***** UK, *** *****.

Dahua **** *********

**** ***** **** ***** facial *********** **** *** the **** ********* ** violation ** *** ****. Other ****** *********** ********* at ***** *** ** disclosures ** ******* *** people's *****. ********, ***** video ************ ************* **** Axis, *********, *** ****** (Hisilicon) *** *** ******* live ****** *********** ** all.

Dahua **** '*********'

***** *** **** ******* GDPR ****** ******, ************ when **** **** *************** *** ** ******* had **** "*********" ** GDPR ********* ** *** Rheinland, * ******* ****** company:

Image

** ** *********, ** ******** *** be **** ********* *** the **** ****** ****** that ************* ******* ** not ****** **************** ** any ***. ************, ***** firms **** ****** ******* GDPR ************** ** ****, including******************.

*********

******* ********** ********** ***** strictly ********* ** *** GDPR, *** ** *** no ***** ****** *********** law ** *********** - something *** **'* ************ camera ************,**** ******,*** ****** ***.********, ***** **** ** just **** * **** old, ***** *** ***, if ***, *********** ***** showing *** ****** *********** should ** **** ** practice.

*** *** ** **** complaint ** *** *** UK ********** ** ******* when *** ***** ****** recognition ** ***********, *** how ** ***** **** an ************ ***** ** without ******'* ******* ** a ***** ****** ******** case.

**********

** **** ****** **** post ** *** **** makes *** *** ******* the ******. **** ****, the ********* **** ****** to ***** * ********** so ** **** ****** as *** **** ********.

Comments (26)

Undisclosed #1

06/27/19 02:25pm

** ***** *********** ** the (****) ****** **** security ***** ***** *** going ** **** **** click-wrap ********** **** *** register **** **** "* give ** ******* ** be ****** *** ************* analyzed".

John Honovich

IPVM | In reply to Undisclosed #1 | 06/27/19 02:27pm

** *****, ** *** UK, *** *** ***** that ** *** *** responsibility ** **** ********** exhibitor, ****** **** *** show ******. ** *** ****** **** GDPR ********* ******* *****, Decides **** ********* *********** ****'* ******** ***** *** show (******* **'* ***** or *** **** ** whoever ** *** *** 'data *********' ** *** facial *********** ******* **** exhibitors ***, ** ** the ********** **********).

Undisclosed #1

In reply to John Honovich | 06/27/19 02:55pm

** *****, ** *** UK, *** *** ***** that ** *** *** responsibility ** **** ********** exhibitor, ****** **** *** show ******.

**********, ****** * ***** think **** * "*******" the ***** ***** ***** exhibitors ** ** ********* the ********** ******** *** gathering ***** *******.

** ***** ** ******** difficult, ** *** **********, for *** ********* ** handle **** ** ***** own ** **** **** to *********** ****** ********* openly ** ***** *****. You ***'* ******** *** booth *** *********** ******* without ****** ** ******** and ******** ** *** cameras ** **** *****.

*******, *** ** ********* even **** ***** *** potential ********** ****** **** could *** ****, ** the **** ********* **** not ******* * "***-*****" notification?

*** ****** *****, * think *** **** ***** to ****** **** * way ** ******* ****** consent, ** *** (*** patrol/enforce) ********** **** ********** anything **** ******** ****.

Mark Costello

06/27/19 02:47pm

**** **** **** ********, no ****** ****** ** be ***** **** ****** like * ******* *********, subscription *********

Undisclosed #1

In reply to Mark Costello | 06/27/19 03:00pm

* ******** **** *** on ****. * ***** it ** **** *********** to *** ************-******* **** cases ****** *** ******** this ***. ** **** already **** **** ****** of ************* ** *** ICO ** ****** "*********" claims, **** **** ****** up ** ********. 

* ***** *** ******* kick-back ** ****'* ***** complaint *** **** *********** and *******.***** *** **** early *********** **** *** governing ****** ***** **** down ******* **** ** anyone ********* ****. ** have *** ****, ** least ** *** ********, evidence ** *** ********.

*******, *****, *** ******, have ** **** ** this ***** **** **** is * "*****", *** they ***** *********** ** violating **** **** **-***** demos. ** ** *** like **** ****** **** into ******* * ****-*** test ** *********, ** filed **** ** *********** guesses.

John Honovich

IPVM | In reply to Undisclosed #1 | 06/27/19 03:05pm

** ** *** **** IPVM ****** **** **** running * ****-*** **** on *********, ** ***** this ** *********** *******.

******, *** ********, ***** and ********** **** ** were ************* **** *** that ** *** ***** last ****. *** **** IFSEC ****** * **** this **** ********* / warning **** ********** ***** be ****** *** ******* to ** ****** ***********:

***, *******, *** ** that, ***** ***** *** facial *********** *** ***** made ** ******* ** get *******.

Undisclosed Integrator #5

In reply to Undisclosed #1 | 07/01/19 07:41am

*’* ***** **** *** in **** ** *** proviso **** *** ******* in *** **** ** a ************ ******** ***********.  If **** **** **** was ** * ******** mall *’* ** **** you, *** ** * security ***** **** *** a ******!

John Honovich

IPVM | In reply to Undisclosed Integrator #5 | 07/01/19 11:17am

** * ******** ***** show *** * ******!

** ** ******** **** security ***** ***** *** not ******* ** ********** processing *****, **** ***** be *********** ** ***. ***'* see **** *** *** says. **** ** *** point ** ****** ** that *** *** *** give **** ******** ***** how ***** ***** *** applied ** ********.

Undisclosed Integrator #2

06/27/19 03:31pm

* ** ********** ** question *** ***** ** paying *** ************ **** to ****. ******* **** this *** *** ******** to ** ** * member.  

John Honovich

IPVM | In reply to Undisclosed Integrator #2 | 06/27/19 03:36pm

**** **** **** ****** - ** ***** *******, we ** *********, ** develop ******** (*.*., *** Calculator), ***. ** ****** one ***** *** *** of **. **'* **** a ******, *** **** is *** ** ****** everyone ***** ********** ********, it ** ** ****** we ******* ****** ******* value ** ******* *** cost ** ********** *** what ***** ****** *** will **** ** *** member.

#*, ** ***** *** specific ****** ** *** not ***** **** ***** provide ***** ** ***, please *** ** **** here.

Undisclosed #3

IPVMU Certified | 06/27/19 06:03pm

************* ********:

** ** * ********* even ** **** ********** doesn’t ****?

John Honovich

IPVM | 06/28/19 11:21am

***** ***** ** *** cover ********* ********** **** as ****** ***********, * Dahua ** ******* *** pointed *** ** ******** that ***** *** **** a ***** **** ****** inside ***** *****, ** the ****** ***** ****:

*** *** **** ** to *** ***** ****:

***********, ** **** *** even ******* *** ****** recognition **** ***, **** 'facial ******'.

Undisclosed #3

IPVMU Certified | In reply to John Honovich | 06/29/19 08:22am

*********** ***** ** *** Galaxy

Undisclosed #4

06/30/19 03:25am

**** ****. ***** ******** companies **** ** ** held *********** ** *******. Too **** **** *** being ****** ** ***** multinational ******* ********* **** virtually ** ************. ** a ** ******* **** to ***** *** *********** Chinese *** **** ***** certainly ** **** *********** there.

Undisclosed #7

In reply to Undisclosed #4 | 07/01/19 07:45pm

** * ** ******* went ** ***** *** disregarded ******* *** **** would ********* ** **** accountable *****.

** ********* ******** ******* a ******.

Undisclosed Integrator #5

07/01/19 07:31am

****** ** ***** ****** were ********** ********* ****, including ****** ***********.

***** *** ****** **** Dahua *** **** ******* out ** **** **** staff **** (******** ** have ****) ***** ** leave *** ***** ** that (********) ********* **** out ** ********** ** prevent **** ***** **** going ** ***** ***** or ******* ** *****?

*** **** *** **** this **** *** **** poorly ********...

John Honovich

IPVM | In reply to Undisclosed Integrator #5 | 07/01/19 11:09am

**** (********) ********* **** out ** ********** ** prevent **** ***** **** going ** ***** ***** or ******* ** *****

#*, ****? *********, ***** do *** *** ***** 'rumors' ****? *****, **'* completely *****. ******, ********* talked ** ** ** their *****. *****, ** actually********* **** ** *** IFSEC ******:

********* *** *** **** knowledgeable ** *** ******* companies **** ***** **** about *** **** ******

** * ****** *** diligence ****** ******** *** obviously ***** ******, **** enough #*?

Undisclosed Integrator #5

In reply to John Honovich | 07/01/19 01:59pm

* **** ** **** if *** ******** * made **** **** ** they **** *** **** rumours...  **’* * ******, clearly ****** ** **** - *** ***’* ** due *** ** *******.  

***** ** **** ** not *** **** ** course ** **’* **** for *** ** *** to ******** **** ** there’d ** ****** ** read ;) 

** *** ***** *** your *****/*********** ** ***** the *****?

John Honovich

IPVM | In reply to Undisclosed Integrator #5 | 07/01/19 04:01pm

*** ***’* ** *** dil ** *******.

** ******, *** ***. I ****** **** ** my ****** *** **** school *********, *********, ** industry ******* **** ******** can.

*** ***** '*****' ***: Hikvision *** ** ********** against **** *** ***** 2019. **** *** *** do ** *****? ****** IPVM *** *** ***** 2019 ********, ****** *******, no? ** **** ** right ** *** ****** of *** ***** ****** relevant ** **** '*****' that ** *** ***** with ****.

** *** ***** *** your *****/*********** ** ***** the *****?

*****, **'* ***** ***** **** ******, ** *****:

** *** ** ****** realizing ** **** **** IPVM. **** ** *** identified *********, ** **** a ***** ******* *** shouted **** ** ******'* speak ** **.

**, ** **** *** asked ** ***** *** stand *** ***** **** clear **** **** **** running **** ****** *********** including ****** ** *** aisle *** **** **** were *** ********** ******* for ********** **** ****** recognition.

* ** ***** ** answer *** ********* ****** if *** **** ** be ********* ** ** industry *******, *** ****** be **** ** ***** a ****** ****** ** fact ***** ** ** the ******* *****.

Undisclosed #3

IPVMU Certified | In reply to John Honovich | 07/01/19 04:48pm

*** ***’* ** *** dil ** *******.

“** ******, *** ***.”

*** **** ****’** *** rumors ******* ;)

John Honovich

IPVM | In reply to Undisclosed #3 | 07/01/19 04:50pm

****, **'* **** *** to ***** *** ******** and **** ****** ******** by ****** '*****'

Undisclosed Integrator #6

07/01/19 08:53am

** - * *** one **** ** ********** to *** ***** **** goes, *'* ******** ***** the ************ ** ********, but *** ******** ** otherwise ** ****** *********** needs ** ** ****** in *** ** ** line **** ****.

*** **** ** ** role ** **** ******* of ************ ********* ***** application *** ************. ** allows *** ***'* ** inform ******* ** *** situation **** *** ******** of ****** *********** ******. We **** ******* ** if *** ****** ******** it, *** ** *** always ** * ******** to ****** **** ***** it ****** ***** *********** so **** *** ****** an ******** ******.

Undisclosed Integrator #5

In reply to Undisclosed Integrator #6 | 09/22/19 06:49am

*** ******** ** ********* of ****** *********** ***** to ** ****** ** the ** ** **** with ****.

* ********** *****... ** have ** ***** ********** upon ***** ** **** design, ************** ** ******.

**** ****** *** **** looking ** ** ** depth... *** ** *** also ***** **** *** enforcement ***** ** ** a ****** **********, ***** implemented ***.

** ** *******, *** GDPR *** ******* *** significantly ******* ** *** respect ** ** ******* in **********.

** * *******, ** need ** **** **** in * ****** ** real **** *********, ** create **** ********, *************, guidelines. * ******* **** should ****** ******* ** a ***** ********* ** we **** *** *********** of * **** ****** precedent, ***** ***** ** less ****** ** ***.

**’** **** **** *** legal ********* ** ******* consent *** ******* **** systems, ***** ***** **** that *** ******* ******** without ******* ** ** admissible! **** ***** ** be ********* ******* ******** on ** ****** ** probably *** ** *** best ********* ** ********** or *** *****.

John Jiang

09/22/19 04:41am

*** **** ****** ****** DAHUA *** *********, **** is *** *******?

Undisclosed #3

IPVMU Certified | In reply to John Jiang | 09/22/19 09:56am

*** **** ****** ****** DAHUA *** *********, **** is *** *******?

****** ******.

John Honovich

IPVM | 11/20/19 02:47pm

******: *** *** ***** us ** ***** *****, which ** *** ** July **, ****. ***** finally *********, ****** * months *****, ******** *** usage ** ******* ** justification, ****** *****:

*** ***** ** *** ICO ***:

**do *** ****** *****'* ******** ** *** basis ****:

*. ***** *** ****'* Article *, ******* *** not * ***** ***** for ********** ** ******* categories ** ******** **** like **********, *******'* ********* ********** ******* do *** *****.
*.********* *** **** *** "captured ********, *** *** the ******* ** *********** a ********** ******* ******". However, ** ** ********* in *** ******** *********: "importantly, * **** ** face *** ******** ** a ******** ** ******* as ************** ******* ** * 'stranger' *** *** *** do ** *** ****** who **** ****** ** the ******". *** ******** Data ********** ***** *** explicitly ****** **** ******* people's ***** *** ********* them ** * ******** via ****** *********** ****** as ********** ********** ***** Article * ** *** "purpose ** ** ******** identify ******* *******".*******,*** **** **** **** counts ** ********** ********** regardless ** ******* *** person ****** *** ******** in *** ******** ** not. ****** ***** ** the**** ***** ************ **********, ******* **, **** 17.

** **** ****** **** report **** ** **** material ******** **** *** ICO.

Read this IPVM report for free.

This article is part of IPVM's 6,728 reports, 907 tests and is only available to members. To get a one-time preview of our work, enter your work email to access the full article.

Already a member? Login here | Join now
Loading Related Reports