How to implement EU data protection regulation for R&D in biometrics Articles uri icon

authors

  • SANCHEZ REILLO, RAUL
  • ORTEGA FERNANDEZ, INES
  • PONCE HERNANDEZ, WENDY
  • QUIROS SANDOVAL, HELGA CRISTINA

publication date

  • January 2019

start page

  • 89

end page

  • 96

volume

  • 61

International Standard Serial Number (ISSN)

  • 0920-5489

Electronic International Standard Serial Number (EISSN)

  • 1872-7018

abstract

  • Biometrics R&D has to deal with personal data. From the Universal Declaration of Human Rights, privacy of a human being shall be protected, and this is addressed in different ways in each region of the world. In the case of the European Union, Data Protection Directives, Laws and Regulations have been established, and interpreted in different ways by each European Member State. Such a diversity has pushed the European Union to generate an improved regulation that will be mandatory from May 2018. Biometric R&D shall not only comply with the current Directive, but also has to adapt its work to the new Regulation. This work is intended to describe the situation and provide a recommended procedure when having to acquire personal data. The recommended procedure is illustrated by the implementation of a Biometric Data Acquisition Platform, used to acquire fingerprints from nearly 600 citizens using different sensors.

keywords

  • anonymization; biometrics; coding; data protection; databases; privacy; user consent