NHS Digital, iProov facial recognition data sharing opacity

Occurred: September 2021

Can you improve this page?
Share your insights with us

The Guardian reports that NHS Digital refuses to share details of how the facial data of UK citizens is being stored or shared. NHS Digital collects and stores UK citizens' facial recognition data using iProov, a London-based private technology company.

Other than to confirm law enforcement bodies are able to request data, neither entity will share details of how the data, which is classified as sensitive under UK law, is collected and stored, sparking concern among digital rights and privacy campaigners

Neither will either party share or publish the contract on 'security' grounds. Reports also point to iProov's close links with the UK's ruling Conservative Party, to which two of its directors have donated in recent years.

Operator: NHS Digital
Developer: iProov
Country: UK
Sector: Gov - Health
Purpose: Store facial verification data
Technology: Facial recognition
Issue: Privacy; Security
Transparency: Governance; Privacy

Page info
Type: Incident
Published: September 2021