Programme

PDF Programme

 

BOOK NOW

Time Session

09.00

Registration and breakfast

09.30

Welcome

Olga Ganopolsky, General Counsel - Privacy and Data, Macquarie Group, Australia

09.35

Introduction

  • Objectives for the roundtable
  • Highlights from PL&B’s biometric identification survey

Stewart Dresner, Chief Executive, Privacy Laws & Business

09.45

Participant introductions

Each person to briefly state their use of, or plans for, biometric identification

10.05

Biometric identification: The ultimate in identity authentication, or not?

  • Biometric use cases (for example, identification v. authentication v. verification)
  • Types of biometrics (for example, facial, voice, iris, behaviour, etc...)
  • Understanding the technology to ensure correct deployment and usage

Paul Simmonds, CEO, The Global Identity Foundation

10.30

Onfido and Identity Verification

  • Machine Learning - The Fundamental Concepts

Mohan Mahadevan, VP of Research, Onfido
Pouria Mortazavian, Director of Research, Onfido
Francesca Porter, Legal Director, Onfido or Neal Cohen, Director of Privacy, Onfido

11.00

Coffee

11.20

Machine Learning

  • Biometrics
  • Performance Benchmarking
  • Algorithmic Bias
Mohan Mahadevan, VP of Research, Onfido
Pouria Mortazavian, Director of Research, Onfido
Francesca Porter, Legal Director, Onfido or Neal Cohen, Director of Privacy, Onfido

13.00

Lunch

14.00

Biometrics in the workplace

  • Facial recognition, access control and fingerprints for compliance purposes.
  • Implementation in a privacy compliant way

Olga Ganopolsky, General Counsel - Privacy and Data, Macquarie Group, Australia

Andy Chesterman, Data & Compliance Director, DAMM SOLUTIONS

14.30

Exchange of experience on introduction of biometric techniques used in a commercial context

Kelly Hendley, Data Protection Officer, Morrisons - Theft prevention/detection and streamlining processes

Philip James, Partner, Sheridans - Biometrics, GDPR and ID verification: A Risk Based Approach

Nick Graham, Partner, Dentons

Graham McKay, Data Protection Officer, Deloitte

15.30

Tea

15.50

Legal and ethical considerations

  • What do organisations using biometric services see as both the privacy challenges and opportunities from using biometric services?
  • How should providers of AI and biometric services address privacy in their operations?

Emma Erskine-Fox, Associate, TLT and all participants

17.00

Close

PDF Programme

 

BOOK NOW

Issues to consider when planning the introduction of biometric techniques:

  1. Which biometric techniques are most used to verify identity or other purposes matters related to:
    • the workplace?
    • customers?
  2. Which biometric techniques third party service providers are you planning on using in the next 3 years?
  3. How do you navigate through the various third-party related privacy issues?
    • Choice of provider
    • Compliant contracts 
    • Data security 
    • Data Protection by Default as a criterion for selection
    • Data Protection Impact Assessment as a criterion for selection 
    • Use of data and purpose limitation
    • Period of retention of data
    • De-identification and destruction of data
    • Other
  4. How have you assessed the GDPR applying to biometric technologies?
  5. What, if any, specific legal issues are related to specific biometric technologies including, identification techniques?
    • Facial recognition
    • Voice recognition
    • Iris recognition
    • Gait
    • Keyboard and mouse patterns
    • Other
  6. To what extent does Artificial Intelligence help any of the processes, including the verification process?
  7. Have labour unions, works councils, and/or privacy advocates opposed the introduction of biometric technologies, including for identification purposes, in your organisation or wish to limit its use?
    • If so, on which grounds?
    • Have any harms been identified? 
    • If so, which harms?
  8. How have you planned, or will you plan, to address these concerns?
  9. To what extent can consent be freely given and informed in this context?
  10. What other privacy legal issues arise? How have you dealt with them?
  11. A case study from the ICO’s sandbox programme with comments from at least one sandbox member company.
  12. Identify legal issues, ethical or commercial/risk considerations in specific jurisdictions.
  13. Action points in general and in specific jurisdictions.