Spain's data protection authority, the Agencia Española de Protección de Datos, published guidance on the use of biometric data for work and personal purposes, noting employers must follow the EU General Data Protection Regulation regardless of employee consent. The AEPD said consent is not a legal basis due to an "imbalance between the person who is subjected to the treatment and the person who is carrying it out."
27 Nov. 2023
AEPD releases guidance on biometric data use
RELATED STORIES
A view from DC: Can we have symmetry in privacy choices?
Notes from the IAPP Canada: Fall brings youth privacy issues to the forefront
Notes from the Asia-Pacific region: China privacy landscape 'hot and dynamic as ever'
A view from Brussels: Will health data sharing be a blueprint for other domains?
California awaits fate of legislature-approved AI safety bill