Clearview Sued By Vermont Attorney General For Violating The State's Privacy Laws
from the engineering-its-own-downfall dept
For the second time in a little over 30 days, odious facial recognition tech supplier Clearview is being sued. Unlike the first lawsuit, which is a proposed class action over violations of Illinois' biometric privacy law, this one [PDF] is being filed by a government agency. The Attorney General of Vermont is seeking to permanently ban Clearview from collecting info about state residents or sell access to the info it's already collected.
The complaint alleges that Clearview AI has been collecting photos of Vermonters available on the internet – called “screen scraping” – and using artificial intelligence to “map” individual’s faces. Private businesses, individuals, and law enforcement use this data via an app that allows a user to identify a person within seconds using only a photograph. No Vermont state or local law enforcement agencies have used the app. Clearview AI collects the facial recognition data of Vermont children, as well as adults, without their notice or consent.
The complaint also alleges that Clearview AI violated Vermont’s new Data Broker Law by fraudulently acquiring data through its use of screen scraping.
The method used to compile Clearview's database of three billion images is going to make it very difficult for the company to dodge lawsuits like these. Scraping sites may be mostly legal, but Clearview doesn't provide any way to opt out of this collection. Scraping images from sites where users have granted the platform permission to publish their information doesn't mean the TOS agreement the user made with the platform magically migrates with the scraped data.
From the lawsuit:
[T]he term "publicly available" does not have any meaning in the manner used by Clearview, as even though a photograph is being displayed on a certain social media website, it is being displayed subject to all of the rights and agreements associated with the website, the law, and reasonable expectations. One of those expectations was not that someone would amass an enormous facial-recognition-fueled surveillance database, as the idea that this would be, permitted in the United States was, until recently, unthinkable.
Thus, when an individual uploads a photograph to Facebook for "public" viewing, they consent to a human being looking at the photograph on Facebook. They are not consenting to the mass collection of those photographs by an automated process that will then put those photographs into a facial recognition database. Such a use violates the terms under which the consumer uploaded the photograph, which the consumer reasonably expects will be enforced.
Clearview's database compilation relies on its violating website terms of service en masse. Sites have begun pushing back but at this point their legal options are limited to being angry about it. But some state-by-state litigation may actually have an effect, since it seems almost impossible for Clearview to comply with privacy laws governing the collection of biometric data. Selling access to the data makes it even more difficult, since there's no way for those packaged up in Clearview's database to request removal or limit access to the scraped data.
It's too late for Clearview to salvage its reputation by claiming it controls access carefully and sells only to law enforcement agencies to assist in solving crimes. That cat walked right out of the bag and over to BuzzFeed, which reported Clearview is selling its tech to private companies and governments engaged in ongoing human rights abuses. Claiming to serve a higher purpose while behaving like a bottom feeder doesn't do anything for anyone, least of all a company that hoped it would fly under the radar long enough to capitalize fully on a bunch of free photos it found scattered around the internet.
Thank you for reading this Techdirt post. With so many things competing for everyone’s attention these days, we really appreciate you giving us your time. We work hard every day to put quality content out there for our community.
Techdirt is one of the few remaining truly independent media outlets. We do not have a giant corporation behind us, and we rely heavily on our community to support us, in an age when advertisers are increasingly uninterested in sponsoring small, independent sites — especially a site like ours that is unwilling to pull punches in its reporting and analysis.
While other websites have resorted to paywalls, registration requirements, and increasingly annoying/intrusive advertising, we have always kept Techdirt open and available to anyone. But in order to continue doing so, we need your support. We offer a variety of ways for our readers to support us, from direct donations to special subscriptions and cool merchandise — and every little bit helps. Thank you.
–The Techdirt Team
Filed Under: data broker law, facial recognition, privacy, privacy law, vermont
Companies: clearview, clearview ai
Reader Comments
Subscribe: RSS
View by: Time | Thread
No. Just no. There is so much wrong with this it's hard to know where to begin, so let's just begin with the basics:
That which is done in public has no expectation of privacy. None. Zero. The same principle that says that yes, you can record police in their interactions with the public, whether they want you to or not, also says that what you post in public can be used in ways that you don't like. If you have a problem with that, too bad; don't post anything in a public place if you have any problem with it ending up in the hands of people who might not have your best interests at heart.
If this gives the ruling that these Luddites are seeking, the insanely abusable precedent it sets would create a horrific chilling effect on future innovation. That's the sort of thing that Techdirt usually gets right, and it's a bit disheartening to see this article coming down on the wrong side of it this time.
[ link to this | view in chronology ]
Re:
That which is done in public has no expectation of privacy.
Would the police feel the same way about their information being used in a similar manner?
Let's say I correlate an online database of police both in uniform along with their personal pictures, such that they are easy to identify when not on duty. Just stuff they post in public, for public consumption.
Do you think this would hold water or would their unions empty their bowels and make the same argument? I'm not saying it shouldn't - but I'd expect them to lose their collective minds and cry about safety.
[ link to this | view in chronology ]
Re: Re:
You know the answer. Forget about the off-duty data, they've freaked out about people posting the locations of on-duty officers (such as those operating speed traps).
[ link to this | view in chronology ]
Re:
True. But then, scraping images together with the accompanying personal information by breaking the TOS of a privately owned site actually mean they violated someones rights - whether it's privacy related or other doesn't really matter.
Also, equating a privately owned site to a public space available to the public only after agreeing to a TOS doesn't really fly.
[ link to this | view in chronology ]
Re:
Advances in technology can certainly change "expectations". Someone going around and demanding each person's name and ID that's in public would probably not be acceptable, but a tiny camera that collects that info without consent is okay?
[ link to this | view in chronology ]
Isn't that exactly what Facebook does when someone uploads an image? And, presumably, what they claim in their terms of service will be done?
[ link to this | view in chronology ]
Hmmm. At least Vermont doesn't seem confused about CDA 230.
As certain other government agencies are.
If we dig far enough, maybe we will find the bar
[ link to this | view in chronology ]
Order Tramadol 50mg Online Without Prescription | Xanax 0.5mg Bu
[ link to this | view in chronology ]
buycocaineshop.com
pruchase Cocaine, Abortion Pills, fentanyl, carfentanil, Nembutal, Ecstasy Pills, hashish, Wax, LSD sheet, DMT, Hash, Cannabis Strains at http://buycocaineshop.com
[ link to this | view in chronology ]