Some Legal Issues of Biometric Data Protection in Thailand
Main Article Content
Abstract
Biometric is a technology that can measure and analyze the physiological and behavioral characteristics of a person. Unlike a password, Biometrics data is hard to fake or steal. Since a person was born, he or she would have his or her specific fingerprints, iris, or facial which are unlike others. Biometrics is so convenient that it can identify persons from his or her own physiological or behavioral characteristics. However, Biometrics data is specific for each person. Hence, it could not be changed. Do you think would it be dangerous if someone could hack, fake, or use our biometrics data, or is it dangerous if someone uses our Biometrics data in transactions? Is there any law in Thailand that could protect our Biometrics data in practice? Thailand has many laws that mention the rule for the protection of biometric data. Especially, The Personal Data Protection Act B.E.2562 which is the first data protection act of Thailand. It provides a significant rule for the collection, use, and disclosure of personal data including biometric data. However, the Personal Data Protection Act B.E.2562 is the first personal data protection act in Thailand which is very new. It provides only general and broad rules for processing all types of personal data including the biometric data which is mentioned in the Act as only a type of “personal data”. This article will study on the practical issues in the aspects of “public interest”, “substantial public interest”, “explicit consent”, “civil liability” and “compensation” to find the laws or regulations to be good examples for Thailand to have guidelines for the protection of Biometric data in practice.
Article Details
This work is licensed under a Creative Commons Attribution-NonCommercial-NoDerivatives 4.0 International License.
References
Modi K. Shimon, Biometrics in Identity Management: Concepts to Applications (Artech House Norwood 2011) P.3
ASHOK J., SHIVASHANKAR V., MUDIRAJ P.V.G.S., ‘AN OVERVIEW OF BIOMETRICS’ ((IJCSE) International Journal on Computer Science and Engineering’ Vol. 02, No. 07, 2010) P.2402-2408
Information Commissioner’s office, ‘Public task, Information’ accessed 22 May 2020
Information Commissioner’s Office, ‘Special category data.’ accessed 5 May 2020
Information commissioner’s office ‘what are the condition for processing,’ <https://ico.org.uk/for-organisations/guide-to-data-protection/guide-to-the-general-data-protection-regulation-gdpr/special-category-data/what-are-the-conditions-for-processing/#conditions1> accessed 22 May 2020
Joss Fong, ‘What facial recognition steals from us’ (10 December 2019) <https://www.vox.com/recode/ 2019/12/10/21003466/facial-recognition-anonymity-explained-video> accessed 10 January 2020
ThaiPR.net, ‘Bangkok launched a plan to use fingerprint ID card system’ (January 27, 2004) <https://www.ryt9.com/s/prg/128254> accessed 4 April 2020
Webfact, ‘VIDEO: Fingerprint and facial recognition now scanning passengers at Don Mueang Airport’ (27 May 2019) accessed 6 november 2019
Data Protection Act 2018
General Data Protection Regulation (GDPR)