Facial recognition technology (FRT) identifies or otherwise recognises a person from a digital facial image. Businesses can use FRT in a variety of contexts - for example, in allowing access to devices, taking payments, or allowing entry to secure areas.
Depending on the use, FRT involves processing personal data, biometric data and special category personal data. Such technologies can intrude on people's privacy, so businesses need to think carefully when deciding if they should implement them.
If you are a small business looking to begin using facial recognition technology, read the ICO's latest FAQ about using FRT for payment, entry, or other security systems.
The information highlights key issues to be aware of, such as:
- what you need to consider before using this technology;
- when you must complete a data protection impact assessment;
- how to identify and satisfy a special category condition; and
- what to include in your privacy notice if you use FRT. See: [Additional considerations for technologies other than CCTV | ICO](https://ico.org.uk/for-organisations/guide-to-data-protection/key-dp-themes/guidance-on-video-surveillance-including-cctv/additional-considerations-for-technologies-other-than-cctv/#frt)
If you have been running a business for a while, maybe as a sole trader or in a partnership, you may have heard someone say, “You should incorporate”.
The National Cyber Security Centre (NCSC) has published a blog post exploring the potential for ‘vibe coding’ replacing the Software-as-a-Service (SaaS) business model. While not suggesting that vibe coding is ready to take over now, they conclude that vibe coding is following a pattern similar to cloud adoption 20 years ago.