In recent years, biometrics have been at the forefront of security and identity authentication. Biometrics technology utilizes people’s physical and behavioural characteristics, such as faces or fingerprints. It is now a standard technology on smartphones, tablets, and newer laptops.

Although biometrics have various benefits, it also comes with privacy and consent concerns. It is crucial to address the moral and ethical issues behind the sophisticated technology, especially regarding how sensitive data are stored and used.

The benefits and disadvantages

Biometric technology offers a variety of potential and proven benefits. Biometric data are unique to each individual, making it a more secure and reliable way to verify identity than passwords or PINs. 

It is also why biometric systems can check against and consolidate multiple records belonging to the same individual, avoiding database duplication and fraudulent registrations. It adds an extra layer of security that is harder to fake or steal, nontransferable, and more storage-efficient.

Biometric authentication can be faster and more convenient than passwords or tokens for some applications. For example, Windows Hello for Business allows users to use fingerprints or facial scans to access hardware-protected cryptographic keys.

However, with these advantages, the technology also poses multiple risks and concerns.

As with other security technologies, biometrics can be bypassed by determined attackers. Sure, it is harder to crack than traditional passwords, but it is not impossible. 

The Information Commissioner’s Office (ICO) has highlighted potential data protection risks associated with biometric technologies. These include bias, discrimination, exclusion, and transparency. 

Biometric technologies can be biassed against certain groups of people. For instance, fingerprint authentication methods have been shown to be affected by the user’s age. Older adults tend to have difficulties with this method, leading to discriminatory outcomes.

The systems can also fail to identify users if the user is injured. For example, a fingerprint scanner may not be able to identify a user if their hand is burned.

Some people might also be uncomfortable with the use of biometric imaging. Although it depends on factors such as culture, religion, age, environment, gender, and the specific biometric modality, not everyone fully accepts the system despite its widespread use.

A study by Capterra involving 757 UK consumers found that 20 percent are concerned about the misuse of biometric data, 18 percent about identity theft, 18 percent about data breaches, and 17 percent about reduced privacy.

Ethical considerations of biometrics

The UK General Data Protection Regulation (GDPR) classifies biometric data as special category data that must be processed abiding by Article 9(2). Individuals must give explicit consent for companies to use their biometrics data for one or more specified purposes, such as by accepting terms of service.

While the data collecting itself may not be inherently harmful, the data can be misused for malicious purposes if they fall into the wrong hands. For example, they could be used to commit identity theft and track people’s movements. 

Companies that work with biometric data must uphold ethical principles. According to the International Biometrics + Identity Association, these include respecting users’ data, maintaining transparency, and promoting accountability.

If necessary, you can work with security companies such as Marengo to protect biometrics data ownership. Its technical surveillance countermeasures service can help ensure your biometrics data are secure, with no applications discreetly recording confidential data without consent.