‘We need a biometrics commissioner for more than policing’
The term biometrics is not particularly well understood. And yet, this is the unassuming umbrella term for our most valuable personal data and we should care about how accessible it is to others.
One recent report defined it as “any physical, biological, physiological or behavioural data, derived from human subjects, which have the potential to identify an individual”. That’s wordy, but what we’re talking about is the capture of personal characteristics – fingerprints, DNA, scans of your eyes and much more.
To put it crudely, biometrics takes what makes you you, and turns it into a tool for others to identify you. But who is interested in getting hold of this, and why should we be bothered if they do? Law enforcement are among those most interested in the potential of biometric technology.
In 2015, in England and Wales, police forces even went so far as to unlawfully upload 18 million photos of people to a facial recognition database. Mugshots of people cleared or never even charged of an offence were put on there. Police Scotland, while not uploading photos they shouldn’t have been, were accessing the photos put on there by other forces.
Why is such a database so powerful? Images captured elsewhere, perhaps at a street party or football match, can then be compared against this database. Facial recognition technology was even deployed by police at a convention of Elvis impersonators in Wales, I believe to identify potential troublemakers rather than judge the quality of their sunglasses and wigs.
But without regulation, many organisations would say thank you, thank you very much. Don’t get me wrong, such technologies can play a significant role in bringing people to justice. But we can’t just gift public authorities, or indeed private companies, such a powerful tool.
Join us for FutureScot’s Digital Justice Conference, 21 November.
There are strict rules on indiscriminately taking and cross-referencing well-established biometrics such as our fingerprints and DNA for a reason. For instance, we have seen that mistakes and false identification can lead to miscarriages of justice.
Surveillance is steadily being normalised, to the extent that the presence of an audience beyond the people you can see often feels inevitable. Privacy now exists in this context.
We should be reflecting on what right someone has to possess our details and what they intend to do with them. There must be robust safeguards and that is why the lack of rigorous regulation around emerging technologies is a worry.
Two independent expert reports have echoed my party’s call for stronger governance and independent oversight. They have said a proper framework is necessary and recommended that Scotland get itself a Biometrics Commissioner.
The Scottish Government has been remarkably slow in responding. But it finally announced this month that it plans to introduce a Biometric Data Bill and establish a Scottish Biometrics Commissioner.
Our laws need updating. This was last looked at in 2008, after issues around the retention of DNA and fingerprint data were raised by Professor James Fraser. You only need to remember what your phone looked like in 2008 to see how much technology has moved on.
Fingerprints and DNA were the so-called first generation of biometrics. A second generation included facial, speech and iris recognition. Now a third generation is making use of the ability to recognise step and movement patterns with the development of gait recognition.
Technology doesn’t stand still. Data use and retention is a cornerstone of the modern world, and the benefits of its use create shortcuts and fast-tracks that can make it a more efficient place. Unlocking your phone with your fingerprint is an attractive proposition. Getting through passport control quicker is appealing too.
We need a new legal framework to be capable of coping with such change. It needs to be future-proof, capable of protecting the public from the misuse of existing systems and those that haven’t even been invented yet.
England and Wales already have a Biometrics Commissioner. Scotland needs to catch up in that respect too.
The new Commissioner should play an important role in keeping Parliament and the public aware of developments, the technologies coming down the line and what the implications of them are for our human rights and privacy. They are expected to start by overseeing the use of data in policing and criminal justice, but the Scottish Government must be open to their scrutinising what is going in health, education and the private sector.
If this doesn’t happen, we risk being left open to the discretion of persons unknown.
Liam McArthur is the Member of Scottish Parliament for Orkney Islands for the Scottish Liberal Democrats. He is the Liberal Demcrat’s spokesperson for justice and a member of the Justice Sub-Committee on Policing.
The pandemic has taught me how to share more – and I feel a better leader for it
As a young professional starting out in the tech sector 30 years ago, I thrived on the fast pace,constant change and demanding workload. I lived in London, Singapore and Australia…
We need to shout about our successes. Liz Fletcher on celebrating women in biotech
Throughout my career in biotechnology and life sciences, I have seen many women leading ground-breaking research studies in their fields of expertise. Yet, and I include myself in this, we…
Getting the best out of patient data is key to unlocking future health benefits in Scotland
It is important that clinicians’ voices are heard in the consultation around Scotland’s new health and care data strategy, which closes this week (12 August). Busy GPs like myself are the trusted…
How motherhood helped me be a better leader
Consider this an open letter to anyone I have worked with before I became a mother and before I fully understood how being a parent is actually a prized asset…
‘We cannot achieve our goals without entrepreneurs’ – Kate Forbes on vision for new ‘tech scaler’ network
From the very start of my ministerial career, I have had responsibility for the Scottish tech sector – and I can still say what I have said from the start,…
Finding a role in cyber was ‘tough’ for Cheryl Torano. Now she’s determined to help other women join an under-represented industry
When I decided to upskill to change careers at the age of 30 and dive into the digital world, I knew I would be starting out at the bottom of…
Why innovation and marketing are the perfect partners to make changes that matter￼
With the rapid evolution of traditional marketing and the appearance of digital marketing, technology and innovation has become part of any marketer’s life without the need of working for a…
Transitioning to a four-day week – CEO’s vow to strike a healthier balance in the workplace
I came to Scotland nearly 20 years ago from Ireland, with no contacts but a lot of determination. While Ireland will always be my home, Scotland has given me amazing…