GDPR / ICO Complaint Filed Against Dahua

By: IPVM Team, Published on Jun 27, 2019

ICO GDPR Dahua Complaint thumbnail

IPVM has filed a GDPR complaint against Dahua UK's facial recognition conducted at their booth during this year's IFSEC show.

In this post, we explain the reasoning behind the complaint and the difference between this one and the one we made last year, including:

  • Complaint Cause
  • Conference vs Exhibitors
  • Most Egregious
  • Previous Dahua GDPR Claims
  • Reasoning

Overall, we hope our case adds clarity on how facial recognition can be used under GDPR.

ICO GDPR Dahua Complaint thumbnail

**** *** ***** * GDPR ********* ******* ***** UK's ****** *********** ********* at ***** ***** ****** this ****'****** ****.

** **** ****, ** explain *** ********* ****** the ********* *** *** difference ******* **** *** and *** ***** **** **** ****, *********:

  • ********* *****
  • ********** ** **********
  • **** *********
  • ******** ***** **** ******
  • *********

*******, ** **** *** case **** ******* ** how ****** *********** *** be **** ***** ****.

[***************]

**************

** ***** ****, *****'* booth (***** ** ******* on **** **) ******** live ****** *********** ***** filmed ****** *** ******** their *****, ********** *** results ** * ** screen:

***** ********* ****** *********** on **** ******** ****, attempting ** ***** **** or ********* **** ** a '********' ** *** excerpt ***** *****:

*******, ***** *** *** obtain *** ******* ** people ********, *** *** it **** *** ************* for *** ********** **** IPVM ********. ********, **** saw ** ***** **** Dahua ********** ********** ********** was ****** ***** ******.

****, ** *** *******, is * ***** ********* of *** ****, ************ * ************* ********** ****** *** a *** **********.********* *** **** ********* that * ***** ** a ******** ********** ***** conceivably ***. *** **** states ********** ********** ** permissible **:

*** **** ******* ***given ******** ******* to the processing of those personal data for one or more specified purposes

*********, ** **** ***** a ********* ******* ***** for ********* *** **** to *** **'* **** protection ****** -*** *********** ************'* ******(***) - *** ************* ********* ****.

IFSEC ********** ** **********

** ****,**** ***** * **** complaint******* *****'* ********** (***) after ** ******** ***** and ***** ******* ****** recognition ***** ******* ***** consent **** *********.

*** *********** *** *********** *** ***** **** IFSEC ********** **** *** responsible *** *** ******' demos. ******, ** *** the ********* ***** *** demos ********** **** **** liable. **** ** *** this ****, ** ***** the ********* ******* ***** UK, *** *****.

Dahua **** *********

**** ***** **** ***** facial *********** **** *** the **** ********* ** violation ** *** ****. Other ****** *********** ********* at ***** *** ** disclosures ** ******* *** people's *****. ********, ***** video ************ ************* **** Axis, *********, *** ****** (Hisilicon) *** *** ******* live ****** *********** ** all.

Dahua **** '*********'

***** *** **** ******* GDPR ****** ******, ************ when **** **** *************** *** ** ******* had **** "*********" ** GDPR ********* ** *** Rheinland, * ******* ****** company:

Image

** ** *********, ** ******** *** be **** ********* *** the **** ****** ****** that ************* ******* ** not ****** **************** ** any ***. ************, ***** firms **** ****** ******* GDPR ************** ** ****, including******************.

*********

******* ********** ********** ***** strictly ********* ** *** GDPR, *** ** *** no ***** ****** *********** law ** *********** - something *** **'* ************ camera ************,**** ******,*** ****** ***.********, ***** **** ** just **** * **** old, ***** *** ***, if ***, *********** ***** showing *** ****** *********** should ** **** ** practice.

*** *** ** **** complaint ** *** *** UK ********** ** ******* when *** ***** ****** recognition ** ***********, *** how ** ***** **** an ************ ***** ** without ******'* ******* ** a ***** ****** ******** case.

**********

** **** ****** **** post ** *** **** makes *** *** ******* the ******. **** ****, the ********* **** ****** to ***** * ********** so ** **** ****** as *** **** ********.

Comments (22)

** ***** *********** ** the (****) ****** **** security ***** ***** *** going ** **** **** click-wrap ********** **** *** register **** **** "* give ** ******* ** be ****** *** ************* analyzed".

 

** *****, ** *** UK, *** *** ***** that ** *** *** responsibility ** **** ********** exhibitor, ****** **** *** show ******. ** *** ****** **** GDPR ********* ******* *****, Decides **** ********* *********** ****'* ******** ***** *** show (******* **'* ***** or *** **** ** whoever ** *** *** 'data *********' ** *** facial *********** ******* **** exhibitors ***, ** ** the ********** **********).

** *****, ** *** UK, *** *** ***** that ** *** *** responsibility ** **** ********** exhibitor, ****** **** *** show ******.

**********, ****** * ***** think **** * "*******" the ***** ***** ***** exhibitors ** ** ********* the ********** ******** *** gathering ***** *******.

** ***** ** ******** difficult, ** *** **********, for *** ********* ** handle **** ** ***** own ** **** **** to *********** ****** ********* openly ** ***** *****. You ***'* ******** *** booth *** *********** ******* without ****** ** ******** and ******** ** *** cameras ** **** *****.

*******, *** ** ********* even **** ***** *** potential ********** ****** **** could *** ****, ** the **** ********* **** not ******* * "***-*****" notification?

*** ****** *****, * think *** **** ***** to ****** **** * way ** ******* ****** consent, ** *** (*** patrol/enforce) ********** **** ********** anything **** ******** ****.

**** **** **** ********, no ****** ****** ** be ***** **** ****** like * ******* *********, subscription *********

* ******** **** *** on ****. * ***** it ** **** *********** to *** ************-******* **** cases ****** *** ******** this ***. ** **** already **** **** ****** of ************* ** *** ICO ** ****** "*********" claims, **** **** ****** up ** ********. 

* ***** *** ******* kick-back ** ****'* ***** complaint *** **** *********** and *******.***** *** **** early *********** **** *** governing ****** ***** **** down ******* **** ** anyone ********* ****. ** have *** ****, ** least ** *** ********, evidence ** *** ********.

*******, *****, *** ******, have ** **** ** this ***** **** **** is * "*****", *** they ***** *********** ** violating **** **** **-***** demos. ** ** *** like **** ****** **** into ******* * ****-*** test ** *********, ** filed **** ** *********** guesses.

** ** *** **** IPVM ****** **** **** running * ****-*** **** on *********, ** ***** this ** *********** *******.

******, *** ********, ***** and ********** **** ** were ************* **** *** that ** *** ***** last ****. *** **** IFSEC ****** * **** this **** ********* / warning **** ********** ***** be ****** *** ******* to ** ****** ***********:

***, *******, *** ** that, ***** ***** *** facial *********** *** ***** made ** ******* ** get *******.

*’* ***** **** *** in **** ** *** proviso **** *** ******* in *** **** ** a ************ ******** ***********.  If **** **** **** was ** * ******** mall *’* ** **** you, *** ** * security ***** **** *** a ******!

** * ******** ***** show *** * ******!

** ** ******** **** security ***** ***** *** not ******* ** ********** processing *****, **** ***** be *********** ** ***. ***'* see **** *** *** says. **** ** *** point ** ****** ** that *** *** *** give **** ******** ***** how ***** ***** *** applied ** ********.

* ** ********** ** question *** ***** ** paying *** ************ **** to ****. ******* **** this *** *** ******** to ** ** * member.  

**** **** **** ****** - ** ***** *******, we ** *********, ** develop ******** (*.*., *** Calculator), ***. ** ****** one ***** *** *** of **. **'* **** a ******, *** **** is *** ** ****** everyone ***** ********** ********, it ** ** ****** we ******* ****** ******* value ** ******* *** cost ** ********** *** what ***** ****** *** will **** ** *** member.

#*, ** ***** *** specific ****** ** *** not ***** **** ***** provide ***** ** ***, please *** ** **** here.

************* ********:

** ** * ********* even ** **** ********** doesn’t ****?

***** ***** ** *** cover ********* ********** **** as ****** ***********, * Dahua ** ******* *** pointed *** ** ******** that ***** *** **** a ***** **** ****** inside ***** *****, ** the ****** ***** ****:

*** *** **** ** to *** ***** ****:

***********, ** **** *** even ******* *** ****** recognition **** ***, **** 'facial ******'.

*********** ***** ** *** Galaxy

**** ****. ***** ******** companies **** ** ** held *********** ** *******. Too **** **** *** being ****** ** ***** multinational ******* ********* **** virtually ** ************. ** a ** ******* **** to ***** *** *********** Chinese *** **** ***** certainly ** **** *********** there.

** * ** ******* went ** ***** *** disregarded ******* *** **** would ********* ** **** accountable *****.

** ********* ******** ******* a ******.

****** ** ***** ****** were ********** ********* ****, including ****** ***********.

***** *** ****** **** Dahua *** **** ******* out ** **** **** staff **** (******** ** have ****) ***** ** leave *** ***** ** that (********) ********* **** out ** ********** ** prevent **** ***** **** going ** ***** ***** or ******* ** *****?

*** **** *** **** this **** *** **** poorly ********...

**** (********) ********* **** out ** ********** ** prevent **** ***** **** going ** ***** ***** or ******* ** *****

#*, ****? *********, ***** do *** *** ***** 'rumors' ****? *****, **'* completely *****. ******, ********* talked ** ** ** their *****. *****, ** actually********* **** ** *** IFSEC ******:

********* *** *** **** knowledgeable ** *** ******* companies **** ***** **** about *** **** ******

** * ****** *** diligence ****** ******** *** obviously ***** ******, **** enough #*?

* **** ** **** if *** ******** * made **** **** ** they **** *** **** rumours...  **’* * ******, clearly ****** ** **** - *** ***’* ** due *** ** *******.  

***** ** **** ** not *** **** ** course ** **’* **** for *** ** *** to ******** **** ** there’d ** ****** ** read ;) 

** *** ***** *** your *****/*********** ** ***** the *****?

*** ***’* ** *** dil ** *******.

** ******, *** ***. I ****** **** ** my ****** *** **** school *********, *********, ** industry ******* **** ******** can.

*** ***** '*****' ***: Hikvision *** ** ********** against **** *** ***** 2019. **** *** *** do ** *****? ****** IPVM *** *** ***** 2019 ********, ****** *******, no? ** **** ** right ** *** ****** of *** ***** ****** relevant ** **** '*****' that ** *** ***** with ****.

** *** ***** *** your *****/*********** ** ***** the *****?

*****, **'* ***** ***** **** ******, ** *****:

** *** ** ****** realizing ** **** **** IPVM. **** ** *** identified *********, ** **** a ***** ******* *** shouted **** ** ******'* speak ** **.

**, ** **** *** asked ** ***** *** stand *** ***** **** clear **** **** **** running **** ****** *********** including ****** ** *** aisle *** **** **** were *** ********** ******* for ********** **** ****** recognition.

* ** ***** ** answer *** ********* ****** if *** **** ** be ********* ** ** industry *******, *** ****** be **** ** ***** a ****** ****** ** fact ***** ** ** the ******* *****.

*** ***’* ** *** dil ** *******.

“** ******, *** ***.”

*** **** ****’** *** rumors ******* ;)

****, **'* **** *** to ***** *** ******** and **** ****** ******** by ****** '*****'

** - * *** one **** ** ********** to *** ***** **** goes, *'* ******** ***** the ************ ** ********, but *** ******** ** otherwise ** ****** *********** needs ** ** ****** in *** ** ** line **** ****.

*** **** ** ** role ** **** ******* of ************ ********* ***** application *** ************. ** allows *** ***'* ** inform ******* ** *** situation **** *** ******** of ****** *********** ******. We **** ******* ** if *** ****** ******** it, *** ** *** always ** * ******** to ****** **** ***** it ****** ***** *********** so **** *** ****** an ******** ******.

Login to read this IPVM report.
Why do I need to log in?
IPVM conducts unique testing and research funded by member's payments enabling us to offer the most independent, accurate and in-depth information.

Related Reports on GDPR

Mobotix First CNPP CCTV Cybersecurity Certification Examined on Sep 05, 2019
Mobotix recently became the first video surveillance manufacturer to receive the CNPP cybsersecurity certification for its cameras, in which they...
UK Facewatch GDPR Compliance Questioned on Aug 27, 2019
Even as the GDPR strictly regulates biometrics, a UK company called Facewatch is selling anti-shoplifter facial recognition systems to hundreds of...
First GDPR Facial Recognition Fine For Sweden School on Aug 22, 2019
A school in Sweden has been fined $20,000 for using facial recognition to keep attendance in what is Sweden's first GDPR fine. Notably, the fine is...
Anyvision Facial Recognition Tested on Aug 21, 2019
Anyvision is aiming for $1 billion in revenue by 2022, backed by $74 million in funding. But does their performance live up to the hype they have...
Suprema Biometric Mass Leak Examined on Aug 19, 2019
While Suprema is rarely discussed even within the physical security market, the South Korean biometrics manufacturer made global news this past...
Biometrics Usage Statistics 2019 on Aug 13, 2019
Biometrics are commonly used in phones, but how frequently are they used for access? 150+ integrators told us how often they use biometrics,...
Milestone "GDPR-ready" Certification Claim Critiqued on Aug 12, 2019
Milestone is touting that its latest XProtect VMS is "GDPR-ready" with a 'European Privacy Seal'. However, our investigation raises significant...
Australia Security Full Show Report on Jul 25, 2019
IPVM went to Australia attending the 3 days of the Australia Security Exhibition: This was held at the ICC Sydney, as shown below: In this...
New GDPR Guidelines for Video Surveillance Examined on Jul 18, 2019
The highest-level EU data protection authority has issued a new series of provisional video surveillance guidelines. While GDPR has been in...
First Video Surveillance GDPR Fine In France on Jul 08, 2019
The French government has imposed a sizeable fine on a small business for violating the GDPR after it constantly filmed employees without informing...

Most Recent Industry Reports

Schmode is Back, Aims To Turn Boulder AI Into Giant on Sep 16, 2019
One of the most influential and controversial executives in the past decade is back. Bryan Schmode ascended and drove the hypergrowth of Avigilon...
Manufacturers Unhappy With Weak ASIS GSX 2019 And 2020 Shift on Sep 16, 2019
Manufacturers were generally unhappy with ASIS GSX, both for weak 2019 booth traffic and a scheduling shift for the 2020 show, according to a new...
How Cobalt Robotics May Disrupt Security on Sep 13, 2019
While security robots have largely become a joke over the last few years, one organization, Cobalt Robotics, has raised $50+ million from top US...
Panasonic 4K Camera Tested (WV-S2570L) on Sep 13, 2019
Panasonic has released their latest generation 4K dome, the WV-S2570L, claiming "Extreme image quality allows evidence to be captured even under...
ASIS GSX 2019 Final Show Report on Sep 12, 2019
IPVM went to Chicago for ASIS GSX 2019, with many exhibitors disappointed about traffic and the exhibitor schedule changing next year. However,...
Installation Course - Last Chance - Register Now on Sep 12, 2019
Last Chance - Register Now - September 2019 Video Surveillance Install Course. Thursday, September 12th is your last chance to register for the...
Commend ID5 Intercom Tested on Sep 12, 2019
Commend touts the new ID5 intercom as 'timelessly elegant' and the slim body, glass front touchscreen indeed looks better than common, but ugly,...
US State Department: "Chinese Tech Giants" "Tools of the Chinese Communist Party" on Sep 12, 2019
The US State Department has called out "Chinese tech giants" for being "tools of the Chinese Communist Party" in a blunt new speech that makes...
Uniview OEM Directory on Sep 11, 2019
This directory lists 20+ companies that OEM products from Uniview, with a graphic and links to company websites below. It does not cover all...
Yi Home Camera 3 AI Analytics Tested on Sep 10, 2019
Yi Technology is claiming "new AI features" in its $50 Home Camera 3 "eliminates 'false positives' caused by flying insects, small pets, or light...

The world's leading video surveillance information source, IPVM provides the best reporting, testing and training for 10,000+ members globally. Dedicated to independent and objective information, we uniquely refuse any and all advertisements, sponsorship and consulting from manufacturers.

About | FAQ | Contact