The data subjects had not been properly informed about the processing of their data. The authority considered this to be a violation of the principles of purpose limitation and storage limitation. In addition, no deletion periods had been defined for the data. According to the Authority, the personal data held by the company were unlawfully processed in this context, as the interest of the U.S.-based company did not constitute an adequate legal basis.įurthermore, Clearview AI had processed the data for purposes other than those for which the data subjects had provided them online. The Authority’s investigation revealed that, contrary to statements to the contrary, the fine recipient also used the said service to evaluate individuals on Italian territory (both Italian citizens and other Italian residents). The resulting profiles can be additionally enriched with information linked to these images (e.g. To this end, the company maintained a database of over 10 billion images of faces gathered through web scraping from public internet sources (including social media and online videos) from around the world. The data required for this is extracted from photos of the individuals concerned. The Italian data protection authority had started investigating Clearview AI after previously receiving several complaints against the fine recipient.Ĭlearview AI offers a service that uses artificial intelligence to create biometric profiles of individuals. company had unlawfully made of individuals in Italy. The present fine is related to biometric profiles that the U.S. Italy – Garante per la protezione dei dati personali Top 10 GDPR Fines issued by European Authorities in 2022
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |