In this blogpost, we have collated and analyzed our RTI findings and other research on the Delhi Police’s use of facial recognition technology. #ProjectPanoptic 1/n
It is important to note here that use of facial recognition technology is being done in Delhi without there being any legal framework in place to regulate it. This is violative of the Hon’ble Supreme Court’s decision in Justice K.S. Puttaswamy vs Union of India.
5/n
On January 24, 2020 we filed a Right to Information request with the Delhi Police asking them questions pertaining to their use of facial recognition and the legality of this use. 6/n
In their reply dated February 20, 2020, the Delhi Police stated that the legal framework based on which they have acquired facial recognition technology is the Delhi High Court’s decision in Sadhan Haldar v NCT of Delhi. 7/n
It is pertinent to note here that in Sadhan Haldar v NCT of Delhi, the Court has authorised the Delhi Police to obtain facial recognition technology for the purpose of tracking and re-uniting missing children.
8/n
However, in their reply to our RTI request, in response to our query asking about the purpose for which the Delhi Police is using facial recognition, they replied that the technology is being used to match similar faces for police investigation.
9/n
This is a clear instance of function creep. Function creep occurs when a technology or system gradually widens its scope from its original purpose to encompass and fulfill wider functions.
10/n
This is the major concern among many privacy experts with regard to the use of facial recognition technology wherein they are worried that its use will exceed the indicated purpose of security and will end up facilitating state-sponsored mass surveillance.
11/n
Use of FRT against individuals protesting against the actions of the government sets a chilling precedent and also threatens the fundamental rights as guaranteed by the Constitution to each citizen including the right to freedom of expression. 12/n
🚨 Massive Victory! 🚨
@CCI_India has imposed a historic penalty of ₹213.14 cr (approx. $25.25 M) on Meta for abusing its dominant position via WhatsApp's 2021 Privacy Policy. IFF submitted expert information as an informant. Let’s break it down 🧵👇1/10 internetfreedom.in/statement-cci-…
The 2021 policy update by WhatsApp, implemented on a 'take-it-or-leave-it' change, forcing users to accept expanded data collection & sharing within the Meta group—without any real opt-out option. 2/10
The CCI concluded that this constituted:
✅ Unfair conditions under Indian competition law
✅ A violation of user autonomy, given the lack of effective alternatives to WhatsApp
✅ An abuse of Meta’s dominant position, contravening Section 4(2)(a)(i) of the Competition Act. 3/10
Here’s how your beloved DigiYatra uses facial recognition technology (FRT) Content warning: ***DYSTOPIAN USES*** ⚠️⚠️ 1/10
Now that we have your attention, here are the recent ways in which Indian public authorities and police forces used (and abused) facial recognition systems, jeorpardising the human rights and data privacy of millions of Indian citizens without much accountability. 2/10 🧵
1️⃣ @tnpoliceoffl suffered a massive data leak in its FRT portal, making 8,00,000 lines of data vulnerable. This incl. personal data of policemen & FRT reports on thousands of accused persons. IFF called for a total ban on use of FRT by police forces. 3/10
🚨 On May 4, 2024, a massive breach in @tnpoliceoffl’s Facial Recognition (FRT) Portal exposed over 8,00,000 lines of data—which include 50,000 facial IDs, personal information of police officers, & details of crimes, police stations, & FIRs filed. 🚨🧵1/8
The FRT software, developed by CDAC-Kolkata and hosted on TNSDC, which was storing facial images alongside personal details of suspected, accused, & incarcerated persons, was compromised—and the list of data leaked from it is disturbingly long. ⬇️ 2/8
FRT is an extremely invasive & dangerous surveillance tool which poses direct threats to privacy, especially at the hands of law enforcement. Police forces are able to amass & process large volumes of sensitive facial data without any checks, consent, transparency, or procedural safeguards. 3/8
Been hearing some chatter around #DigiYatra? As scary questions about ownership, transparency, and data flow emerge, here is a quick rundown of everything we know about the service, and more importantly, everything we don’t. 😶🌫️🧵1/7
1️⃣Who owns DigiYatra?
In 2019, @MoCA_GoI passed on DigiYatra's operations & data ecosystem to a *private company* created for this very purpose – DigiYatra Foundation. DYF is a joint venture between 5 Indian airports (public-private, 74% stake) & @AAI_Official (public, 26%). 2/7
2️⃣ Such a public-private venture must be answerable to citizens?
Not exactly. Neither DYF nor its security audit agency @IndianCERT fall under the RTI Act. It cannot, technically, be forced to disclose any information on its data practices & security. 3/7 medianama.com/2023/03/223-ci…
Were you among the millions of @WhatsApp users who got a DM from ‘Viksit Bharat Sampark’? 🫠🫠
The account, seeking feedback on government initiatives, is now barred by the Election Commission from sending messages.
But several concerns persist… (1/10) internetfreedom.in/whatsapp-messa…
The message, accompanied by a letter from the PM, listed the various schemes and initiatives introduced by the incumbent government and was, in many cases, sent after the ECI released its Model Code of Conduct for upcoming elections. (2/10)
It stirred a storm and how…
First, we wonder how exactly did MeitY secure the contact information of such a large number of people and when/how did it begin using this information for outreach purposes? (3/10)
@GoI_MeitY has notified the @PIBFactCheck of the @MIB_India as the fact-checking unit (FCU) under the IT Amendment Rules, 2023.
The notified FCU will be empowered to flag online “false”, “fake”, or “misleading” information related to the Union govt. 1/9 🧵
The establishment of the FCU less than a month before the country heads for the #GeneralElections2024 could vastly affect the nature of free speech on the internet as it holds the potential to be (mis)used for proactive censorship, most importantly in the context of dissent. 2/9
This notification follows the March 13 decision of the Bombay HC, where the Bench refused to restrain the setting up of an FCU until the third Judge decides on the constitutionality of the 2023 Amendment.
This effectively allowed the Union govt to operationalise the FCU, despite its constitutionality being under deliberation before the High Court. 3/9