The proposed measures also include rules for collecting facial biometric data from individuals under the age of 14, and for organizations and individuals using the technology. Entities with facial data on more than 10,000 individuals must register with a local branch of the CAC and explain their purpose for collecting the data and their plans for data protection. The measures, if enforced, could enhance security and lower the risk of data mishandling in an industry that has been relatively loosely regulated so far. The proposal is open for public opinions until September 7.
Key takeaways:
- The Cyberspace Administration of China (CAC) has proposed measures to regulate the use of facial recognition technology, including requiring individual approval or written consent for its use, and clear signage in public areas where it is employed.
- The proposed rules also state that organizations in possession of facial data on more than 10,000 individuals must register with a local branch of the CAC and explain their purpose for collecting such data and their plans for data protection.
- The measures could potentially enhance security within the facial recognition industry and lower the risk of data mishandling, which has been a significant issue in China in recent years.
- The proposed measures also state that facial recognition technology should not be used to create profiles based on race, ethnic group, religion, health, social class, or other sensitive information, unless it's deemed necessary for reasons including national security and public security.