Portugal’s National Data Protection Commission (CNPD) has made the decision to ban Worldcoin from collecting biometric data for a period of three months. The reasons behind this ban are related to the company’s alleged failure to verify the age of its members, leading to the collection of data from minors without proper parental consent. Additionally, Worldcoin has been criticized for not providing enough information to users, making it difficult for them to delete their data or revoke consent. These actions go against the General Data Protection Regulation (GDPR), particularly in relation to the protection of biometric data and minors.
Response from CNPD
President of the CNPD, Paula Meira Lourenço, has defended the decision as being necessary to protect the rights of the public and minors. The CNPD mentioned that Worldcoin’s practices raised concerns about compliance with GDPR standards, prompting the urgent intervention against the company. The ban will remain in place until the investigation is concluded and a final decision is reached, ensuring that Worldcoin cannot collect biometric data on the iris, eyes, and face for the next 90 days.
Worldcoin, on the other hand, has denied any wrongdoing and claimed that it is fully compliant with all laws and regulations in its operating areas. The company’s data protection officer, Jannick Preiwisch, stated that Worldcoin does not allow minors to register through the ORB and has a strict policy against registrations by minors. Worldcoin emphasized that it has recently introduced a user-controlled Personal Custody model to give users greater control over their data, demonstrating its commitment to protecting user privacy.
It is worth noting that Spain also imposed a three-month ban on Worldcoin’s data collection activities for similar reasons on March 6. This shows that concerns about Worldcoin’s data collection practices are not limited to Portugal alone. The actions taken by both Portugal and Spain reflect a growing emphasis on the protection of personal data and privacy rights, particularly when it comes to biometric data and minors.
The ban imposed by the CNPD on Worldcoin demonstrates the importance of complying with data protection regulations, especially in cases involving sensitive data such as biometric information. The response from Worldcoin indicates a commitment to addressing the issues raised and improving its data collection practices. As more countries take steps to enforce data protection laws, companies will need to prioritize the protection of user data to avoid facing similar bans and penalties in the future.
Leave a Reply