Privacy Groups Sound the Alarm Over FBI’s Facial-Recognition Technology

Advocates are pushing Attorney General Eric Holder to assess the privacy impact of the FBI’s controversial database that is expected to become fully operational later this year.

A 3D facial recognition program is demonstrated during the Biometrics 2004 exhibition and conference October 14, 2004 in London.
National Journal
Dustin Volz
June 24, 2014, 9:09 a.m.

More than 30 pri­vacy and civil-liber­ties groups are ask­ing the Justice De­part­ment to com­plete a long-prom­ised audit of the FBI’s fa­cial-re­cog­ni­tion data­base.

The groups ar­gue the data­base, which the FBI says it uses to identi­fy tar­gets, could pose pri­vacy risks to every Amer­ic­an cit­izen be­cause it has not been prop­erly vet­ted, pos­sesses du­bi­ous ac­cur­acy bench­marks, and may sweep up im­ages of or­din­ary people not sus­pec­ted of wrong­do­ing.

In a joint let­ter sent Tues­day to At­tor­ney Gen­er­al Eric Hold­er, the Amer­ic­an Civil Liber­ties Uni­on, the Elec­tron­ic Fron­ti­er Found­a­tion, and oth­ers warn that an FBI fa­cial-re­cog­ni­tion pro­gram “has un­der­gone a rad­ic­al trans­form­a­tion” since its last pri­vacy re­view six years ago. That lack of re­cent over­sight “raises ser­i­ous pri­vacy and civil-liberty con­cerns,” the groups con­tend.

“The ca­pa­city of the FBI to col­lect and re­tain in­form­a­tion, even on in­no­cent Amer­ic­ans, has grown ex­po­nen­tially,” the let­ter reads. “It is es­sen­tial for the Amer­ic­an pub­lic to have a com­plete pic­ture of all the pro­grams and au­thor­it­ies the FBI uses to track our daily lives, and an un­der­stand­ing of how those pro­grams af­fect our civil rights and civil liber­ties.”

The Next Gen­er­a­tion Iden­ti­fic­a­tion pro­gram — a bio­met­ric data­base that in­cludes iris scans and palm prints along with fa­cial re­cog­ni­tion — is sched­uled to be­come fully op­er­a­tion­al later this year and has not un­der­gone a rig­or­ous pri­vacy lit­mus test — known as a Pri­vacy Im­pact As­sess­ment — since 2008, des­pite pledges from gov­ern­ment of­fi­cials.

“One of the risks here, without as­sess­ing the pri­vacy con­sid­er­a­tions, is the pro­spect of mis­sion creep with the use of bio­met­ric iden­ti­fi­ers,” said Jeram­ie Scott, na­tion­al se­cur­ity coun­sel with the Elec­tron­ic Pri­vacy In­form­a­tion Cen­ter, an­oth­er of the let­ter’s sig­nat­or­ies. “it’s been al­most two years since the FBI said they were go­ing to do an up­dated pri­vacy as­sess­ment, and noth­ing has oc­curred.”

The fa­cial-re­cog­ni­tion com­pon­ent of the data­base, however, is what pri­vacy ad­voc­ates find most alarm­ing. The FBI pro­jects that by 2015 the fa­cial-re­cog­ni­tion data­base could cata­log up to 52 mil­lion face pho­tos. A sub­stan­tial por­tion of those — about 4.3 mil­lion — are ex­pec­ted to be gleaned from non­crim­in­al pho­to­graphy, such as em­ploy­er back­ground checks, ac­cord­ing to pri­vacy groups.

But earli­er this month, FBI Dir­ect­or James Comey told Con­gress the data­base would not col­lect and store pho­tos of av­er­age ci­vil­ians and is in­ten­ded to “find bad guys by match­ing pic­tures to mug­shots.” But pri­vacy hawks re­main con­cerned that im­ages may be shared among the FBI and oth­er agen­cies, such as the De­fense De­part­ment and Na­tion­al Se­cur­ity Agency, and even state mo­tor-vehicle de­part­ments.

×