In a statement, the Information Commissioner's Office (ICO) reminded organisations of their obligations to conduct a Data Protection Impact Assessment (DPIA) under the UK General Data Protection Regulation (GDPR) before processing sensitive data, such as biometric information, which could pose a high risk. If they identify risks that cannot be mitigated, they should consult the ICO.
Additionally, the ICO said organisations must have a lawful basis for processing personal data. When relying on consent, it should be freely given and easy to withdraw without any negative consequences.
The ICO noted the launch of WorldCoin and confirmed it would be making further enquiries.
What is this page?
You are reading a summary article on the Privacy Newsfeed, a free resource for DPOs and other professionals with privacy or data protection responsibilities helping them stay informed of industry news all in one place. The information here is a brief snippet relating to a single piece of original content or several articles about a common topic or thread. The main contributor is listed in the top left-hand corner, just beneath the article title.
The Privacy Newsfeed monitors over 300 global publications, of which more than 4,350 summary articles have been posted to the online archive dating back to the beginning of 2020. A weekly roundup is available by email every Friday.