> The facial recognition start-up violated the privacy of Illinois residents by collecting their images without their consent, the civil liberties group says in a new lawsuit.
>In a suit filed in Illinois, the A.C.L.U. said that Clearview violated a state law that forbids companies from using a resident’s fingerprints or face scans without consent.
>Under the law, residents have the right to sue companies for up to $5,000 per privacy violation.
Are you suggesting to sue them on the basis of the GDPR? As far as I know that regulation doesn’t have give data subjects the rights to sue, and even then, proving monetary damages will be difficult.
I asked for info under GDPR and sent them a heavily redacted copy of my ID (redacted: surname, half my ID, address) and actually got an answer 3 weeks later that they have nothing on me. Citing their email:
"Hello,
You are receiving this email as a response to your request for data access. After running the photo provided through our algorithm, no matches were found."
Next step: Opt-out. Step after that: Rinse, repeat.
Actually, to be pedantic, citizens of the United States are indeed citizens of the state in which they reside, according to the 14th Amendment:
> All persons born or naturalized in the United States and subject to the jurisdiction thereof, are citizens of the United States and of the State wherein they reside.
In our federal system though, its crucial to make sure people have the right to vote in the states they live. It was even more crucial in the context if the era that the 14th amendment was written in, where states as independent nations willingly participating in the Union with the ability to opt out for whatever reason (slavery) was just put to the test and resolved. At that time, state identity was so strong that people like General Lee saw themselves as Virginians first, Americans second, which led him to fight for the confederacy. Its still an incredibly important distinction and concept today, just having been resolved so thoroughly by now it seems almost weird to think the way the people that wrote that amendment thought. We say the United states is now, but there was a time when we said these united states are instead.
There is actually an incredibly important distinction here that many politicians actually care a lot about; there are many people who are residents with full rights (and responsibilities) who are not citizens; it is important to be aware of these people when referring to the population as a whole. The term "citizen" does not include these people. The term constituents is commonly used, at least in the political sphere; it covers the broad range of people with legal rights within a jurisdiction.
As a non-citizen resident, I definitely understand the distinction, though I am also not a member of any constituency in the U.S. so it would be pretty strange to call me a constituent.
I also see the point that it is in fact more accurate to use the term "resident," even if not for the reasons that the GP posted, as the rights under the CCPA are afforded to all residents of California.
GDPR does apply to Norway, and Norway has a fairly well developed privacy agency. However, according to investigations by Financial Times (the newspaper), none of the European countries have enough people hired to either deal with alleged privacy breaches, or people equipped to actually properly investigate these claims.
The Financial Times tends to have great coverage on data privacy. It is impressive on what they uncover, even with technicalities. Also, the coverage is not fleeting or apocalyptic at all. Somehow, I have never been disappointed with them covering even tech in general. But, their data privacy coverage is generally great.
25 comments
[ 4.7 ms ] story [ 15.1 ms ] thread>In a suit filed in Illinois, the A.C.L.U. said that Clearview violated a state law that forbids companies from using a resident’s fingerprints or face scans without consent.
>Under the law, residents have the right to sue companies for up to $5,000 per privacy violation.
...
Up to $5k doesn’t seem adequate in this case.
If you're going to submit these forms, take screenshots as evidence.
"Hello, You are receiving this email as a response to your request for data access. After running the photo provided through our algorithm, no matches were found."
Next step: Opt-out. Step after that: Rinse, repeat.
Also, to be pedantic, California and Illinois are states, not nations, so the more accurate term is probably resident for those jurisdictions.
> All persons born or naturalized in the United States and subject to the jurisdiction thereof, are citizens of the United States and of the State wherein they reside.
I also see the point that it is in fact more accurate to use the term "resident," even if not for the reasons that the GP posted, as the rights under the CCPA are afforded to all residents of California.
The Financial Times tends to have great coverage on data privacy. It is impressive on what they uncover, even with technicalities. Also, the coverage is not fleeting or apocalyptic at all. Somehow, I have never been disappointed with them covering even tech in general. But, their data privacy coverage is generally great.