Sweden has issued its first fine under GDPR
Sweden has issued its first fine under GDPR. A local authority has been hit with a $20,700 penalty for trialling facial recognition technology on 22 high-school students, whose attendance was tracked over three weeks to speed up the process of reporting attendance.
Innovation that leads to efficiency is very appreciated, but privacy and related obligations is the first thing to fix when such solutions has to be implemented. The Swedish Data Protection Authority ruled that the authority unlawfully processed sensitive biometric data and failed to do a proper impact assessment.
More details here: