“The Internal Revenue Service (IRS) has partnered with ID.me to provide identity verification for IRS applications. Individual taxpayers and tax professionals are required to verify with ID.me to NIST 800-63-3 IAL2+Liveness and AAL2 for secure login. These identity proofing services are crucial for the IRS to ensure millions of taxpayers and tax professionals can securely access the IRS and its applications.” What you may not know is that they are collecting biometric data in the process. In the United States as it currently stands, there is no single, comprehensive federal law regulating the collection and use of biometric data. Does that concern you?
US vs. EU
Unlike the United States, the European Union has taken active steps to create all encompassing data collection and privacy legislation. They have specifically outlined courses of action for collection of biometric data as well. On a very broad level, “The GDPR prohibits the processing of biometric data for the purpose of uniquely identifying natural persons.” They have written exceptions to that rule to further define and clarify any misconceptions.
Current US Biometric Data Collection Legislation
As consumers, alarm bells should be ringing. We should be worried about security, PII, and data privacy laws. As users, we should be able to control our data and have no doubt in our minds that our information is safe. Here at Rownd we protect each customer’s personal information while helping businesses build trust across their brand.
Interested in learning more about Rownd? Head on over to rownd.io for more information.