How to implement EU data protection regulation for R&D in biometrics

Published in Computer Standards & Interfaces, 2019

Recommended citation: [1] R. Sanchez-Reillo, I. Ortega-Fernandez, W. Ponce-Hernandez, and H. C. Quiros-Sandoval, “How to implement EU data protection regulation for R&D in biometrics,” Comput. Stand. Interfaces, vol. 61, 2019, doi: 10.1016/j.csi.2018.01.007. https://doi.org/10.1016/j.csi.2018.01.007

Biometrics R&D has to deal with personal data. From the Universal Declaration of Human Rights, privacy of a human being shall be protected, and this is addressed in different ways in each region of the world. In the case of the European Union, Data Protection Directives, Laws and Regulations have been established, and interpreted in different ways by each European Member State. Such a diversity has pushed the European Union to generate an improved regulation that will be mandatory from May 2018. Biometric R&D shall not only comply with the current Directive, but also has to adapt its work to the new Regulation. This work is intended to describe the situation and provide a recommended procedure when having to acquire personal data. The recommended procedure is illustrated by the implementation of a Biometric Data Acquisition Platform, used to acquire fingerprints from nearly 600 citizens using different sensors.

Download paper here