DOCSLIB.ORG

A NEW COMMON LAW of WEB SCRAPING of WEB SCRAPING LAW a NEW COMMON Affiliate, Berkman Klein Center for Internet & Society, Harvard University

Total Page:16

File Type:pdf, Size:1020Kb

Download full-text PDF Read full-text
A NEW COMMON LAW of WEB SCRAPING of WEB SCRAPING LAW a NEW COMMON Affiliate, Berkman Klein Center for Internet & Society, Harvard University 43059-lcb_25-1 Sheet No. 82 Side A 03/17/2021 10:17:28 LCB_25_1_Art_4_Sobel (Do Not Delete) 3/3/2021 7:28 PM A NEW COMMON LAW OF WEB SCRAPING by Benjamin L.W. Sobel * The Clearview AI facial recognition scandal is a monumental breach of pri- vacy that arrived at a particularly inopportune time. A shadowy company re- portedly scraped billions of publicly-available images from social media plat- forms and compiled them into a facial recognition database that it made available to law enforcement and private industry. To make matters worse, the scandal came to light just months after the Ninth Circuit’s decision in hiQ v. LinkedIn, which held that scraping the public web probably does not violate the Computer Fraud and Abuse Act (CFAA). Before hiQ, the CFAA would have seemed like the surest route to redress against Clearview. This Article analyzes the implications of the hiQ decision, situates the Clearview outrage in historical context, explains why existing legal remedies give aggrieved plain- tiffs little to no recourse, and proposes a narrow tort to empower ordinary In- ternet users to take action against gross breaches of privacy by actors like Clear- view: the tort of bad faith breach of terms of service. Section II argues that the Ninth Circuit’s hiQ decision marks, at least for the time being, the reascension of common law causes of action in a field that had been dominated by the CFAA. Section III shows that the tangle of possible common law theories that courts must now adapt to cyberspace resembles the strained property and contract concepts that jurists and privacy plaintiffs reck- oned with at the turn of the twentieth century. It suggests that modern courts, 43059-lcb_25-1 Sheet No. 82 Side A 03/17/2021 10:17:28 following the example some of their predecessors set over a century ago, may properly recognize some common law remedies for present-day misconduct. Section IV catalogs familiar common law claims to argue that no established property, tort, or contract claim fully captures the relational harm that conduct like Clearview’s wreaks on individual Internet users. Section V proposes a new tort, bad faith breach of terms of service, that can provide aggrieved plaintiffs * Affiliate, Berkman Klein Center for Internet & Society, Harvard University. I am grateful to Saptarishi Bandopadhyay, Alvaro Bedoya, Dinis Cheian, Gabe Doble, Terry Fisher, John Gold- berg, Joe Gratz, James Grimmelmann, Ben Hopper, Spencer Livingstone, Henry Smith, Rebecca Tushnet, and Salomé Viljoen for comments that have clarified and improved my arguments, and to the Harvard Law School Project on the Foundations of Private Law for financial support of this project. 147 C M Y K 43059-lcb_25-1 Sheet No. 82 Side B 03/17/2021 10:17:28 LCB_25_1_Art_4_Sobel (Do Not Delete) 3/3/2021 7:27 PM 148 LEWIS & CLARK LAW REVIEW [Vol. 25.1 with a proper remedy without sacrificing doctrinal fidelity or theoretical co- herence. I. Introduction ......................................................................................... 149 II. Cyberlaw’s Common Law Turn ............................................................ 153 A. Cyberlaw’s Common Law Origins ................................................... 154 B. The Burgeoning CFAA ................................................................... 156 C. The Waning CFAA (and the Waxing Common Law?) ...................... 157 III. Warren and Brandeis All Over Again: Why Common Law Can and Should Help Us .................................................................................... 159 A. Privacy From Property .................................................................... 160 B. Privacy From Contract ................................................................... 161 C. What Common Law Courts Can Do ............................................... 163 D. A Qualified Defense of Formalism ................................................... 166 IV. Web Scraping Looks More Like a Contracts Problem than a Property Problem ................................................................................................ 167 A. Users’ Property Interests ................................................................... 168 1. Users’ Personal Property Interests ............................................... 168 2. Users’ Copyright Interests .......................................................... 169 3. Users’ Publicity Rights ............................................................... 172 B. Platforms’ Property Interests ............................................................ 173 1. Platforms’ Personal Property Interests ......................................... 174 2. Platforms’ Intellectual Property Interests ..................................... 175 C. Users’ Relational Interests ................................................................ 176 1. Users’ Rights Under State Statutes.............................................. 176 2. Users’ “Privacy Tort” Claims ..................................................... 177 43059-lcb_25-1 Sheet No. 82 Side B 03/17/2021 10:17:28 3. Unjust Enrichment ................................................................... 179 D. Platforms’ Relational Interests .......................................................... 182 V. The Tort of Bad Faith Breach of Terms of Service ................................ 183 A. The Trust-Your-Overlords Problem ................................................. 183 1. The Information Fiduciary Response .......................................... 185 B. Bilateral Terms of Service Can Create Duties to Third Parties ........... 187 1. Anti-Scraping Covenants Arguably Exist for Users’ Benefit .......... 189 2. Privacy Harm Is a Foreseeable, Certain, and Proximate Consequence of Nonconsensual, Commercial Facial Recognition .. 190 3. Clearview’s Alleged Conduct Is Morally Blameworthy ................. 192 4. California’s Public Policy Is to Prevent Biometric Privacy Harms ..................................................................................... 194 C. Bad Faith Breaches of Contractual Duties Can Be Tortious ............... 195 D. Synthesizing Duties to Third Parties and Tortious Breaches: The Tort of Bad Faith Breach of Terms of Service ................................... 198 1. Willfulness of Breach ................................................................. 199 C M Y K 43059-lcb_25-1 Sheet No. 83 Side A 03/17/2021 10:17:28 LCB_25_1_Art_4_Sobel (Do Not Delete) 3/3/2021 7:28 PM 2021] WEB SCRAPING 149 2. Recklessness to or Knowledge of Consequences .............................. 199 3. Materiality of Breached Covenant.............................................. 200 E. Answering Some Threshold Objections ............................................. 201 1. The Tort Is Unlimited .............................................................. 201 2. The Tort Is Too Limited ........................................................... 203 3. What About the First Amendment? ............................................ 204 VI. Conclusion ........................................................................................... 206 I. INTRODUCTION On January 18, 2020, the investigative journalist Kashmir Hill broke a sensa- tional story: a “secretive” startup, Clearview AI, offers facial recognition software that identifies persons of interest against a database of nearly three billion photo- graphs. The company’s CEO initially claimed that the software was “strictly for law enforcement,” but later reporting revealed that Clearview’s app was also used by private companies to surveil their premises—and even by private individuals to vet dinner dates. Clearview did not invent facial recognition technology or pioneer a particularly powerful algorithm. Nor did Clearview develop a business model that allowed it to license a singularly comprehensive photo database. Instead, Clearview reportedly just “scraped” publicly-accessible photographs from sites like Facebook, YouTube, Twitter, and Instagram. That is, Clearview harvested images in bulk, using auto- mated software—in violation of the sites’ Terms of Service, which prohibited that very activity. The Clearview exposé outraged civil society. Days after Hill’s story broke, a 43059-lcb_25-1 Sheet No. 83 Side A 03/17/2021 10:17:28 1 Kashmir Hill, The Secretive Company That Might End Privacy as We Know It, N.Y. TIMES (Jan. 18, 2020), https://www.nytimes.com/2020/01/18/technology/clearview-privacy-facial- recognition.html. Hill’s report focused on law enforcement applications, but a subsequent leak of Clearview’s client list revealed that it also offered its services to private entities. Ryan Mac et al., Clearview’s Facial Recognition App Has Been Used by the Justice Department, ICE, Macy’s, Walmart, and the NBA, BUZZFEED NEWS (Feb. 27, 2020), https://www.buzzfeednews.com/article/ ryanmac/clearview-ai-fbi-ice-global-law-enforcement. 2 Kashmir Hill, Before Clearview Became a Police Tool, It Was a Secret Plaything of the Rich, N.Y. TIMES (Mar. 5, 2020), https://www.nytimes.com/2020/03/05/technology/clearview- investors.html; Mac et al., supra note 1. 3 Hill, supra note 1. 4 See generally, e.g., Jennifer Lynch, Clearview AI—Yet Another Example of Why We Need a Ban on Law Enforcement Use of Face Recognition Now, ELECTRONIC FRONTIER FOUND. (Jan. 31, 2020), https://www.eff.org/deeplinks/2020/01/clearview-ai-yet-another-example-why-we-need- ban-law-enforcement-use-face; Ryan Mac et al., Clearview AI Once Told Cops To “Run Wild” With Its Facial Recognition Tool. It’s
Load more

Recommended publications
  • Clearview AI Has Billions of Our Photos. Its Entire Client List Was Just Stolen by Jordan Valinsky, CNN Business Updated 1:24 PM ET, Wed February 26, 2020
    Clearview AI has billions of our photos. Its entire client list was just stolen By Jordan Valinsky, CNN Business Updated 1:24 PM ET, Wed February 26, 2020 New York (CNN Business)Clearview AI, a startup that compiles billions of photos for facial recognition technology, said it lost its entire client list to hackers. The company said it has patched the unspecified flaw that allowed the breach to happen. In a statement, Clearview AI's attorney Tor Ekeland said that while security is the company's top priority, "unfortunately, data breaches are a part of life. Our servers were never accessed." He added that the company continues to strengthen its security procedures and that the flaw has been patched. Clearview AI continues "to work to strengthen our security," Ekeland said. In a notification sent to customers obtained by Daily Beast, Clearview AI said that an intruder "gained unauthorized access" to its customer list, which includes police forces, law enforcement agencies and banks. The company said that the person didn't obtain any search histories conducted by customers, which include some police forces. The company claims to have scraped more than 3 billion photos from the internet, including photos from popular social media platforms like Facebook, Instagram, Twitter and YouTube. The firm garnered controversy in January after a New York Times investigation revealed that Clearview AI's technology allowed law enforcement agencies to use its technology to match photos of unknown faces to people's online images. The company also retains those photos in its database even after internet users delete them from the platforms or make their accounts private.
    [Show full text]
  • Report Legal Research Assistance That Can Make a Builds
    EUROPEAN DIGITAL RIGHTS A LEGAL ANALYSIS OF BIOMETRIC MASS SURVEILLANCE PRACTICES IN GERMANY, THE NETHERLANDS, AND POLAND By Luca Montag, Rory Mcleod, Lara De Mets, Meghan Gauld, Fraser Rodger, and Mateusz Pełka EDRi - EUROPEAN DIGITAL RIGHTS 2 INDEX About the Edinburgh 1.4.5 ‘Biometric-Ready’ International Justice Cameras 38 Initiative (EIJI) 5 1.4.5.1 The right to dignity 38 Introductory Note 6 1.4.5.2 Structural List of Abbreviations 9 Discrimination 39 1.4.5.3 Proportionality 40 Key Terms 10 2. Fingerprints on Personal Foreword from European Identity Cards 42 Digital Rights (EDRi) 12 2.1 Analysis 43 Introduction to Germany 2.1.1 Human rights country study from EDRi 15 concerns 43 Germany 17 2.1.2 Consent 44 1 Facial Recognition 19 2.1.3 Access Extension 44 1.1 Local Government 19 3. Online Age and Identity 1.1.1 Case Study – ‘Verification’ 46 Cologne 20 3.1 Analysis 47 1.2 Federal Government 22 4. COVID-19 Responses 49 1.3 Biometric Technology 4.1 Analysis 50 Providers in Germany 23 4.2 The Convenience 1.3.1 Hardware 23 of Control 51 1.3.2 Software 25 5. Conclusion 53 1.4 Legal Analysis 31 Introduction to the Netherlands 1.4.1 German Law 31 country study from EDRi 55 1.4.1.1 Scope 31 The Netherlands 57 1.4.1.2 Necessity 33 1. Deployments by Public 1.4.2 EU Law 34 Entities 60 1.4.3 European 1.1. Dutch police and law Convention on enforcement authorities 61 Human Rights 37 1.1.1 CATCH Facial 1.4.4 International Recognition Human Rights Law 37 Surveillance Technology 61 1.1.1.1 CATCH - Legal Analysis 64 EDRi - EUROPEAN DIGITAL RIGHTS 3 1.1.2.
    [Show full text]
  • EPIC FOIA Request 1 Facial Recognition PIA June 10, 2020 ICE C
    VIA EMAIL June 10, 2020 Fernando Pineiro FOIA Officer U.S. Immigration and Customs Enforcement Freedom of Information Act Office 500 12th Street, S.W., Stop 5009 Washington, D.C. 20536-5009 Email: [email protected] Dear Mr. Pineiro: This letter constitutes a request under the Freedom of Information Act (“FOIA”), 5 U.S.C. § 552(a)(3), and is submitted on behalf of the Electronic Privacy Information Center (“EPIC”) to U.S. Immigration and Customs Enforcement (“ICE”). EPIC seeks records related to the agency’s use of facial recognition software (“FRS”). Documents Requested 1. All contracts between ICE and commercial FRS vendors; 2. All documents related to ICE’s approval process for new commercial FRS vendors, including but not limited to: a. Document detailing the approval process and requirements for commercial FRS vendors b. Documents related to the approval of all commercial FRS vendors currently in use by ICE c. Documents related to reviewing commercial FRS vendors that have been used under “exigent circumstances” without prior approval; 3. All training materials and standard operating procedures for Homeland Security Investigations (“HSI”) agents regarding use of FRS, including but not limited to the following: a. Existing training materials and standard operating procedures around HSI agent use of FRS b. Existing training materials and standard operating procedures regarding restrictions on the collection of probe photos EPIC FOIA Request 1 Facial Recognition PIA June 10, 2020 ICE c. Training materials and standard operating procedures being developed for HSI agent use of FRS d. Training materials and standard operating procedures being developed regarding the use of probe photos; 4.
    [Show full text]
  • 1:21-Cv-00135 Document #: 31 Filed: 04/09/21 Page 1 of 18 Pageid #:232
    Case: 1:21-cv-00135 Document #: 31 Filed: 04/09/21 Page 1 of 18 PageID #:232 IN THE UNITED STATES DISTRICT COURT FOR THE NORTHERN DISTRICT OF ILLINOIS EASTERN DIVISION Civil Action File No.: 1:21-cv-00135 In re: Clearview AI, Inc. Consumer Privacy Litigation Judge Sharon Johnson Coleman Magistrate Judge Maria Valdez PLAINTIFFS’ MEMORANDUM OF LAW IN SUPPORT OF MOTION FOR PRELIMINARY INJUNCTION Case: 1:21-cv-00135 Document #: 31 Filed: 04/09/21 Page 2 of 18 PageID #:233 INTRODUCTION Without providing notice or receiving consent, Defendants Clearview AI, Inc. (“Clearview”); Hoan Ton-That; and Richard Schwartz (collectively, “Defendants”): (a) scraped billions of photos of people’s faces from the internet; (b) harvested the subjects’ biometric identifiers and information (collectively, “Biometric Data”); and (c) created a searchable database of that data (the “Biometric Database”) which they made available to private entities, friends and law enforcement in order to earn profits. Defendants’ conduct violated, and continues to violate, Illinois’ Biometric Information Privacy Act (“BIPA”), 740 ILCS 14/1, et seq., and tramples on Illinois residents’ privacy rights. Unchecked, Defendants’ conduct will cause Plaintiffs David Mutnick, Mario Calderon, Jennifer Rocio, Anthony Hall and Isela Carmean and Illinois class members to suffer irreparable harm for which there is no adequate remedy at law. Defendants have tacitly conceded the need for injunctive relief. In response to Plaintiff Mutnick’s preliminary injunction motion in his underlying action, Defendants desperately sought to avoid judicial oversight by claiming to have self-reformed. But Defendants have demonstrated that they cannot be trusted. While Defendants have represented that they were cancelling all non- law enforcement customer accounts, a recent patent application reveals Defendants’ commercial aspirations.
    [Show full text]
  • EPIC FOIA Request 1 Clearview AI March 6, 2020 FBI VIA FACSIMILE
    VIA FACSIMILE March 6, 2020 David M. Hardy, Section Chief Record/Information Dissemination Section Federal Bureau of Investigation 170 Marcel Drive Winchester, VA 22602-4843 Fax: (540) 868-4997 Attn: FOIA Request Dear Mr. Hardy: This letter constitutes a request under the Freedom of Information Act (“FOIA”), 5 U.S.C. § 552(a)(3), and is submitted on behalf of the Electronic Privacy Information Center (“EPIC”) to the Federal Bureau of Investigation (“FBI”). EPIC seeks records related to the agency’s use of Clearview AI technology.1 Documents Requested 1. Emails and communications about Clearview AI, Inc., including but not limited to the following individuals and search terms: a. Clearview b. Clearview AI c. Hoan Ton-That d. Tor Ekeland e. Third parties with an email address ending in “@clearview.ai” 2. All contracts or agreements between the FBI and Clearview AI, Inc.; 3. All presentations mentioning Clearview; 4. All Clearview sales materials; 5. All privacy assessments, including but not limited to Privacy Threshold Analysis and/or Privacy Impact Assessments, that discuss the use of Clearview AI technology. Background A recent New York Times investigation revealed that a secretive New York-based company, Clearview AI, Inc., has developed an application that allows law enforcement agencies to identify people in public spaces without actually requesting identity documents or without a legal basis to 1 Clearview AI, Inc., https://clearview.ai/. EPIC FOIA Request 1 Clearview AI March 6, 2020 FBI determine the person’s identity.2 Clearview
    [Show full text]
  • California Activists Challenge Clearview AI on Biometric Surveillance
    For Immediate Release March 9, 2021 Press contact: Joe Rivano Barros, [email protected] ​ Sejal Zota, [email protected] ​ Ellen Leonida, [email protected] ​ California Activists Challenge Clearview AI on Biometric Surveillance Mijente, NorCal Resist, and local activists sued the facial recognition company Clearview AI today over its unlawful surveillance activities. The lawsuit alleges that the company’s ​ ​ surveillance technology violates privacy rights and facilitates government monitoring of protesters, immigrants, and communities of color. Clearview’s facial recognition tool—which allows instantaneous identification and tracking of people targeted by law enforcement—chills political speech and other protected activities, the suit argued. The lawsuit was filed in the Alameda County Superior Court on behalf of Mijente, NorCal Resist, and four individual plaintiffs, including a DACA recipient, who allege that Clearview AI violated their rights under the California constitution, California’s consumer protection and privacy laws, and California common law. “Privacy is enshrined in the California constitution, ensuring all Californians can lead their lives without the fear of surveillance and monitoring,” said Sejal Zota, a lead attorney in the case and ​ ​ the legal director of Just Futures Law, a law project working to support grassroots organizations. “Clearview AI upends this dynamic, making it impossible to walk down the street without fear your likeness can be captured, stored indefinitely by the company, and used against you any time in the future. There can be no meaningful privacy in a society with Clearview AI.” Clearview AI has amassed a database of over three billion facial scans by scraping photos from websites like Facebook, Twitter, and Venmo, violating these companies’ terms of service and storing user images without permission.
    [Show full text]
  • ACLU Facial Recognition–Jeffrey
    Thursday, May 7, 2020 at 12:58:27 PM Eastern Daylight Time SubjeCt: Iden%fying the Impostor - October 10, 2019 Date: Monday, September 30, 2019 at 10:09:08 AM Eastern Daylight Time From: NESPIN Training To: jeff[email protected] Training Announcement Identifying the Impostor October 10, 2019 Location: Gardner Police Department, Gardner, MA Time: 8:00 am - 4:00 pm This program is a Universal Law Enforcement Identity Theft recognition program that will assist you in identifying the presence of an Impostor. This one-day course will teach participants a new and dynamic method of identifying identity thieves, aka Impostors, using multiple State and Federal databases. The instructor will focus on foreign national impostors using stolen identities to hide in plain sight and commit various offenses in the New England area and beyond with a focus on trafficking drugs. This program teaches a comprehensive study of NCIC Triple I and how to understand the search results, along with combining all this information provided from the RMV, BOP, AFISR and “DQs” from Puerto Rico. We also cover facial recognition and altered print recognition. Please go to the following link for complete details: https://extranet.riss.net/public/1419b76f-32ff-49df-a514-513433d66fb7 The views, thoughts, materials and opinions articulated by the instructor(s) of this training belong solely to the instructor(s) and do not necessarily represent the official position or views of NESPIN. ---------------------------------------------------------------- Please do not reply to this e-mail as it is an unmonitored alias. If you do not wish to receive these training mailings, please choose the Opt-out feature at the bottom of this email.
    [Show full text]
  • SCRAPING PHOTOGRAPHS Maggie King
    SCRAPING PHOTOGRAPHS Maggie King INTRODUCTION ................................................................ 188 I. TECHNICAL BACKGROUND ON SCRAPING ................................... 190 A. How to Scrape a Photograph ....................................... 190 B. Why Scrape a Photograph? ......................................... 192 II. THE LAW OF SCRAPING ................................................... 193 A. CFAA Claims ......................................................... 194 1. CFAA Background: Ambiguous Statutory Language ......... 194 2. CFAA Scraping Claims in Caselaw .............................. 195 B. Contract Claims ..................................................... 197 C. Copyright Claims .................................................... 198 III. SCRAPING PHOTOGRAPHS ............................................. 200 A. Copyright and Photographs ........................................ 201 1. Analogous scraping activities are fair use ..................... 202 2. Face Scans are not protectible derivative works. ............ 203 B. Data Ownership ..................................................... 205 1. Non-exclusive licenses bar platforms from asserting claims for user-generated data ............................................... 205 2. Paths to asserting user claims directly ........................ 206 IV. UNRESTRICTED SURVEILLANCE AND STRONGER PROTECTIONS FOR CYBERPROPERTY .............................................................. 207 CONCLUSION .................................................................
    [Show full text]
  • Facial Recognition Technology: a Call for the Creation of a Framework Combining Government Regulation and a Commitment to Corporate Responsibility
    NORTH CAROLINA JOURNAL OF LAW & TECHNOLOGY Volume 21 Issue 4 Article 5 5-1-2020 Facial Recognition Technology: A Call for the Creation of a Framework Combining Government Regulation and a Commitment to Corporate Responsibility Sarah Chun Follow this and additional works at: https://scholarship.law.unc.edu/ncjolt Part of the Law Commons Recommended Citation Sarah Chun, Facial Recognition Technology: A Call for the Creation of a Framework Combining Government Regulation and a Commitment to Corporate Responsibility, 21 N.C. J.L. & TECH. 99 (2020). Available at: https://scholarship.law.unc.edu/ncjolt/vol21/iss4/5 This Article is brought to you for free and open access by Carolina Law Scholarship Repository. It has been accepted for inclusion in North Carolina Journal of Law & Technology by an authorized editor of Carolina Law Scholarship Repository. For more information, please contact [email protected]. NORTH CAROLINA JOURNAL OF LAW & TECHNOLOGY VOLUME 21, ISSUE 4: MAY 2020 FACIAL RECOGNITION TECHNOLOGY: A CALL FOR THE CREATION OF A FRAMEWORK COMBINING GOVERNMENT REGULATION AND A COMMITMENT TO CORPORATE RESPONSIBILITY Sarah Chun* At a fundamental level, the misuse of facial recognition endangers privacy, human rights, and constitutional rights. However, merely banning facial recognition will not address or solve the issues and risks inherent in the use of facial recognition. Rather than an outright ban, developing specific limitations controlling how or when facial recognition can be used in public or private spaces can better serve public interests. This paper suggests creating a framework that combines government regulation and a commitment to social responsibility by developers. Creating this multi-prong framework can help distribute the burden of regulating facial recognition technology amongst parties such as the government, the companies developing the technology, and the end-users.
    [Show full text]
  • Gao-21-518, Facial Recognition Technology
    United States Government Accountability Office Report to Congressional Requesters June 2021 FACIAL RECOGNITION TECHNOLOGY Federal Law Enforcement Agencies Should Better Assess Privacy and Other Risks GAO-21-518 June 2021 FACIAL RECOGNITION TECHNOLOGY Federal Law Enforcement Agencies Should Better Assess Privacy and Other Risks Highlights of GAO-21-518, a report to congressional requesters Why GAO Did This Study What GAO Found Federal agencies that employ law GAO surveyed 42 federal agencies that employ law enforcement officers about enforcement officers can use facial their use of facial recognition technology. Twenty reported owning systems with recognition technology to assist facial recognition technology or using systems owned by other entities, such as criminal investigations, among other other federal, state, local, and non-government entities (see figure). activities. For example, the technology can help identify an unknown individual Ownership and Use of Facial Recognition Technology Reported by Federal Agencies that in a photo or video surveillance. Employ Law Enforcement Officers GAO was asked to review federal law enforcement use of facial recognition technology. This report examines the 1) ownership and use of facial recognition technology by federal agencies that employ law enforcement officers, 2) types of activities these agencies use the technology to support, and 3) the extent that these agencies track employee use of facial recognition technology owned by non- federal entities. GAO administered a survey questionnaire to 42 federal agencies that employ law enforcement officers regarding their use of the technology. GAO also reviewed documents (e.g., system descriptions) and interviewed officials from selected agencies (e.g., agencies that owned facial recognition technology).
    [Show full text]
  • Facial Recognition Technology in New Zealand
    FACIAL RECOGNITION TECHNOLOGY IN NEW ZEALAND TOWARDS A LEGAL AND ETHICAL FRAMEWORK Nessa Lynch, Liz Campbell, Joe Purshouse, Marcin Betkier Facial Recognition Technology in New Zealand Towards a Legal and Ethical Framework © November 2020 Nessa Lynch, Liz Campbell, Joe Purshouse, Marcin Betkier Design: Jo Kinley, Hullaballoo Design TABLE OF CONTENTS ACKNOWLEDGEMENTS _________________________________________________________________ 4 RESEARCH TEAM BIOGRAPHIES _________________________________________________________ 5 EXECUTIVE SUMMARY __________________________________________________________________ 7 SECTION 1 THE USES OF FACIAL RECOGNITION TECHNOLOGY _______________________ 1 : 1 SECTION 2 THE HUMAN RIGHTS FRAMEWORK – RIGHTS AND REMEDIES ____________ 2 : 1 SECTION 3 VALUES, ATTITUDES, ETHICS AND SOCIAL LICENCE _______________________ 3 : 1 SECTION 4 HUMAN RIGHTS IMPLICATIONS OF USING FRT ____________________________ 4 : 1 SECTION 5 EXISTING REGULATION OF FRT ____________________________________________5: 1 SECTION 6 POTENTIAL REGULATION OF FRT - COMPARATIVE MODELS _______________ 6 : 1 SECTION 7 CONCLUSIONS AND RECOMMENDATIONS __________________________________ 7 : 1 SECTION 8 SELECTED BIBLIOGRAPHY ________________________________________________ 8 : 1 3 ACKNOWLEDGEMENTS Many people contributed to this work. We acknowledge the funders. The Law Foundation, through its Information Law and Policy Project, provided the grant which made this project possible. Thank to Lynda Hagen and Richman Wee in particular, as well as the Trustees of the Law Foundation. The Victoria University of Wellington Faculty of Law also provided support. Our research and editorial assistants – Stephen, Liesbet and Anna were essential to the project. Allison Kay was invaluable in keeping financial and other reporting on track. Participants at the workshop in October 2019 provided valuable insights and feedback. Many thanks to Sharelle Kooyman from the Faculty of Law who organised the workshop and associated activities with her usual calm and efficiency.
    [Show full text]
  • How Facial Recognition Technology Will Worsen Online Harassment
    THE END OF ANONYMITY – HOW FACIAL RECOGNITION TECHNOLOGY WILL WORSEN ONLINE HARASSMENT COURTNEY HINKLE* In January 2020, the New York Times published a bombshell report detailing how a little-known company, Clearview AI, had quietly developed facial-recognition software to help law enforcement agencies match photos of unknown persons with their online images.1 The company allows photos to be uploaded and cross-referenced with a massive database of more than 3 billion images scraped from Facebook, YouTube, Venmo, and millions of other websites. The revelations immediately sparked public outcry from lawmakers, tech companies, as well as the privacy and civil rights activists. Google, Twitter, LinkedIn, Venmo, YouTube, and Facebook all sent cease-and-desist letters.2 Apple blocked the company’s iPhone app for violating its terms of its enterprise developer program.3 And the company has been widely panned for its failure, or indifference to, the potentially dangerous and unethical uses of its technology.4 The debate over the use of facial recognition technology has reached a fever pitch in recent months with many activists and scholars calling for lawmakers to impose a complete ban on the technology.5 In the U.S., their engagement has achieved a modicum of success at the local level; for example, San Francisco, Somerville (a Boston suburb), and Oakland have banned government use of the technology.6 In Europe, lawmakers were briefly considering a five-year moratorium on the technology in public spaces,7 but the idea was walked-back in favor of a non-binding commitment that encourages extra-testing and human 8 oversight.
    [Show full text]