Biometrics too unreliable, says EU data protection head

The European Data Protection Supervisor (EDPS) Peter Hustinx has criticised governments' fondness for biometrics to identify citizens and warned greater interoperability of databases may have serious implications for individuals.

In response to a recent Communication by the European Union on the interoperability of several databases, including the Visa Information System and Eurodac, Hustinx issued an Opinion calling for a better analysis of the data protection implications.

The Opinion said: "Interoperability is mentioned not only in relation to the common use of large scale IT systems but also with regard to possibilities of accessing or exchanging data, or even of merging databases. This is regrettable since different kinds of interoperability require different safeguards and conditions."

The EDPS is also keen on the introduction of a 'purpose limitation principle' to stop the function-creep of databases and other major IT projects. New data protection safeguards are therefore needed, Hustinx added.

The EDPS also hit out at the use of biometrics as unique identifiers for European citizens within databases, saying that fingerprint or DNA identifications are too inaccurate and can facilitate the unwarranted interconnection of databases.

Hustinx said: "It is regrettable that the protection of personal data has not been explored sufficiently as an inherent part of the improvement of the interoperability of relevant systems.

"The EDPS suggests adding to this Communication a more consistent analysis on data protection, including privacy-enhancing technologies to improve both effectiveness and data protection."