Home » Blunt, Schatz Introduce Bipartisan Commercial Facial Recognition Privacy Act

SectorsGovernment: Federal, State and Local

Blunt, Schatz Introduce Bipartisan Commercial Facial Recognition Privacy Act

March 19, 2019

U.S. Senators Roy Blunt (Mo.) and Brian Schatz (Hawaii) introduced the Commercial Facial Recognition Privacy Act of 2019 to strengthen consumer protections by prohibiting commercial users of facial recognition technology (FR) from collecting and re-sharing data for identifying or tracking consumers without their consent.

“Consumers are increasingly concerned about how their data is being collected and used, including data collected through facial recognition technology,” said Senator Blunt. “That’s why we need guardrails to ensure that, as this technology continues to develop, it is implemented responsibly. This bill increases transparency and consumer choice by requiring individuals to give informed consent before commercial entities can collect and share data gathered through FR. This legislation is an important step toward protecting privacy and empowering consumers, and I encourage all of my colleagues to support it.”

“Our faces are our identities. They’re personal. So the responsibility is on companies to ask people for their permission before they track and analyze their faces,” said Senator Schatz, Ranking Member of the Senate Subcommittee on Communications, Technology, Innovation, and the Internet. “Our bill makes sure that people are given the information and – more importantly – the control over how their data is shared with companies using facial recognition technology.”

Under the bill, companies would be required to notify consumers when FR is being used. It also requires third-party testing and human review of technologies prior to their implementation, to address accuracy and bias issues in the technology and avoid use cases that may result in harm to consumers. The bill restricts redistributing or disseminating data to third-party entities without express consent from the end user. It also clearly defines data controllers and data processors in order to make requirements apparent for entities that either develop or vend FR products or services, store facial recognition data, or implement these technologies on a physical premise. It would require FR providers to meet data security, minimization, and retention standards as determined by the Federal Trade Commission and the National Institute of Standards and Technology.

I want to hear from you. Tell me how we can improve.

BNP Media Owner & Co-CEO, Tagg Henderson

You must login or register in order to post a comment.

ON DEMAND: DevSecOps creates an environment of shared responsibility for security, where AppSec and development teams become more collaborative. With the right training and tools, developers can become more hands-on with security and, with that upskilling, stand out among their peers... however, they need the security specialists on-side, factoring them into securing code from the start and championing this mindset across the company.

This webinar will educate viewers on becoming the go-to source for the safety and security of Marijuana farms, dispensaries and all of the other moving pieces of the industry — while also providing an opportunity for professional accreditation.

Security Magazine

2020 July

This month in Security magazine, meet 13 female executives who are succeeding in security leadership roles. How are they contributing to the safety and success of their enterprise and to the industry? Also, experts discuss radio frequency threats, mental health during the global pandemic, the future of security networking, zero trust, AI and more.

View More Create Account

Blunt, Schatz Introduce Bipartisan Commercial Facial Recognition Privacy Act

Related Articles

Related Events

Report Abusive Comment