UK neobank Revolut is facing a US class action lawsuit over its collection of biometric data.
Documents from a court in Illinois – first reported by local publication the Cook County Record – outline a complaint from plaintiff Tina Haralampopoulos which alleges that Revolut has been unlawfully collecting, using and storing sensitive biometric data.
The class action, filed on behalf of Haralampopoulos and other Illinois citizens, specifically refers to the bank’s mobile platform whereby users have to submit 'selfies' alongside an image of an identification card as part of a facial recognition process during the application stage.
Revolut integrates facial recognition technology into its app which can scan the images to determine whether the selfie image matches that of the identification card or drivers licence.
The court document also claims that the software can see whether the image matches other photos in its database, the biometric data of known masks, or in some instances, on information and belief, "third party and/or government databases".
The complainant says that this technology exposes consumers to "serious and irreversible" privacy risks, particularly as it is "not clear to consumers that the defendant is collecting their biometric identifies when they apply to sign up".
The class action alleges that Revolut is breaching legislation in Illinois, called the Biometric Information Privacy Act (BIPA), which was designed to regulate companies that collect and store Illinois citizens' biometrics.
"Despite this law, [the] defendant disregards consumers’ statutorily protected privacy rights and unlawfully collects, stores, and uses, their biometric data in violation of the BIPA in regards to its services," reads the document.
It says that Revolut has violated this law because it did not properly inform the plaintiff and other class members in writing of the specific purpose and length of time for which their biometric data was being collected, stored, and used, as required by the BIPA.
Additionally, it suggests that the FinTech failed to provide and make known a publicly available retention schedule and guidelines for permanently destroying biometric data, as required by the legislation.
Finally, it states that Revolut didn't receive a written release from those filing the class action to collect, capture, or otherwise obtain their biometric data.
FStech has approached Revolut for comment.
Latest News
-
HSBC launches payments management tool for businesses planning international growth
-
NatWest launches advent calendar to highlight festive purchase scam risks
-
Starling Bank poaches Adeel Hyder from TSB
-
HSBC sustainability chief quits amid strategic shifts
-
MPs publish damning report calling FCA 'incompetent' and 'dishonest'
-
BNY introduces new buy-side platform
The human firewall: Activating employees to safeguard financial data
As financial services increasingly embrace SaaS and cloud-based technologies, they face emerging threats to safeguard sensitive customer data. While comprehensive IT security measures are essential, the active involvement of employees across organisations is pivotal in ensuring the protection of sensitive data.
Building a secure financial future for instant payments: The convergence of ISO 20022 and fraud detection
The financial landscape is rapidly evolving its approach to real-time transactions under the ISO 20022 standard, and financial institutions must take note. With examples such as the accelerated adoption of SEPA Instant Credit Transfers in Europe and proposed New Payment Architecture (NPA) programme in the UK, the need for swift and effective fraud detection is more crucial than ever.
Data Streaming and Consumer Duty: Transforming customer experience in banking
Introduced at the end of July, the Consumer Duty is a game-changing new set of rules and guidance for financial services institutions in the UK, and companies must look to modernise their systems in adherence with it in mind to create the best customer experience possible.
From insight to action: Empowering financial institutions through advanced technology and collaborative information sharing
The use of Information sharing in enhancing financial crime prevention has been universally agreed as being beneficial. However no-one has been able to agree on how information can be shared safely without breaching data protection laws or having the right systems to facilitate this, Information sharing has re-emerged as a major consideration for financial institutions (FIs) ahead of the Economic Crime and Corporate Transparency Bill being made into law in the UK.
© 2019 Perspective Publishing Privacy & Cookies
Recent Stories