56
top 14 comments
sorted by: hot top controversial new old
[-] jet@hackertalks.com 47 points 1 year ago

Short answer no.

Long answer nooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooo

[-] riceandbeans161@discuss.tchncs.de 24 points 1 year ago

at least FaceID is locally stored and not in the cloud

[-] optissima@lemmy.world 8 points 1 year ago
[-] Goodvibes@lemmy.cafe 6 points 1 year ago

Do we have any reason to believe that it isn't? Generally I don't know if Apple has lied about what data is local before.

[-] Cat@kbin.social 2 points 1 year ago

Local storage can still be part of the cloud.

[-] Asudox@lemmy.world 1 points 1 year ago

Can you prove that when it is not open source?

[-] phorq@lemmy.ml 22 points 1 year ago

It's not sharing, it's giving. Sharing implies they'll share back, and I have yet to see photographic evidence of Zuckerberg's human eyes.

[-] mattomattic@discuss.tchncs.de 16 points 1 year ago* (last edited 1 year ago)

should you share biometric data online?

FUCK NO! And this is why - These abusive corporate sites already prison-rape our privacy, profile us and sell our secrets to who-the-fuck-ever will pay for it. Meanwhile, they can't keep their databases secure, so our personal and private details go for sale on the dark web. It's then used to screw us over further by extortion, theft and identity theft, which is really difficult to rectify. Who the hell thinks giving these incompetent morons more unique identifying data to keep safe for us is a good idea? If you're in doubt just go for a visit to the data breaches community on any instance that has one. The thing we NEED to be doing is taking control of our own identities by implementing web3 technology and using methods that preserve our data for our own use. We decide who gets what. One example for clarification purposes is something like InternetComputer's solution.

We've all grown accustomed to managing hundreds of usernames and passwords, recovering forgotten accounts over text or email, unwittingly permitting companies to profit from our data at the cost of our personal privacy, all while falling victim to threats of identity theft and fraud.

On the Internet Computer blockchain, users can securely authenticate themselves without ever needing an email, username, or password. Using a passkey, users can login conveniently without their information being monetized by tech companies. Internet Identity is designed to prevent Web3 services to track user activity across dapps.

And yes, you could still use fingerprint or faceID, but you're not handing it over to anyone else.

[-] furrowsofar@beehaw.org 9 points 1 year ago* (last edited 1 year ago)

The problem with a lot of bio based systems is that they are spoofable on one hand, you cannot change them on the other, they are not secrets, and using them discloses them.

Face ID is a good example. Lot of these systems you can just hold up a photo. Apple is the only vendor that I would consider using face id with as theirs is believed to be fairly good.

[-] Showroom7561@lemmy.ca 8 points 1 year ago

Share biometric data?

I use biometrics as a form of security, which would be counterproductive if I "shared" it online.

Passwords are easy to change, biometrics are not.

So, if biometrics aren't used as a local-only option, then I won't use it. Simple as that.

[-] flyoverstate@kbin.social 8 points 1 year ago

No, full stop

[-] autotldr@lemmings.world 3 points 1 year ago

This is the best summary I could come up with:


While facial recognition and fingerprints are some of the most commonly used features, gait analysis, analysing a person’s walk, and Amazon’s "palm signatures" also use biometric data.

Apple was one of the first companies to move to the commercial use of biometric data in 2013 with Touch ID, giving users the possibility to use their fingerprint to unlock their phones.

"Biometric data skips some of the problems that we have with passwords," said Melissa Goldstein, associate professor at George Washington University’s Milken Institute School of Public Health.

Amazon, for instance, boasts about its palm payment system One, which is "100 times more secure than scanning two irises," and the company hasn’t seen a single false positive "after millions of interactions among hundreds of thousands of enrolled identities".

"Valid consent is a specific requirement of the GDPR," said Felix Mikolasch, a data protection lawyer at the non-profit NOYB, the European Centre for Digital Rights.

Last year, the French, Greek, Italian and UK data authorities each fined Clearview, a US company creating facial recognition databases from images on the Internet, including on social media, because it breached GDPR.


The original article contains 843 words, the summary contains 186 words. Saved 78%. I'm a bot and I'm open source!

[-] persolb@lemmy.ml 3 points 1 year ago

I see this the same as a company asking for a SSN. I didn’t pick it, it is really hard to change without physical/mental pain, and is spoofable anyway.

Based on those criteria… I’m not sure why I care about sharing it. I wouldn’t solely use it for something I’m securing myself, but if some company wants too, I don’t really take issue.

[-] PublicLewdness@burggit.moe 1 points 1 year ago

Biometrics is a terrible idea all around.

this post was submitted on 11 Sep 2023
56 points (100.0% liked)

Privacy Guides

16263 readers
1 users here now

In the digital age, protecting your personal information might seem like an impossible task. We’re here to help.

This is a community for sharing news about privacy, posting information about cool privacy tools and services, and getting advice about your privacy journey.


You can subscribe to this community from any Kbin or Lemmy instance:

Learn more...


Check out our website at privacyguides.org before asking your questions here. We've tried answering the common questions and recommendations there!

Want to get involved? The website is open-source on GitHub, and your help would be appreciated!


This community is the "official" Privacy Guides community on Lemmy, which can be verified here. Other "Privacy Guides" communities on other Lemmy servers are not moderated by this team or associated with the website.


Moderation Rules:

  1. We prefer posting about open-source software whenever possible.
  2. This is not the place for self-promotion if you are not listed on privacyguides.org. If you want to be listed, make a suggestion on our forum first.
  3. No soliciting engagement: Don't ask for upvotes, follows, etc.
  4. Surveys, Fundraising, and Petitions must be pre-approved by the mod team.
  5. Be civil, no violence, hate speech. Assume people here are posting in good faith.
  6. Don't repost topics which have already been covered here.
  7. News posts must be related to privacy and security, and your post title must match the article headline exactly. Do not editorialize titles, you can post your opinions in the post body or a comment.
  8. Memes/images/video posts that could be summarized as text explanations should not be posted. Infographics and conference talks from reputable sources are acceptable.
  9. No help vampires: This is not a tech support subreddit, don't abuse our community's willingness to help. Questions related to privacy, security or privacy/security related software and their configurations are acceptable.
  10. No misinformation: Extraordinary claims must be matched with evidence.
  11. Do not post about VPNs or cryptocurrencies which are not listed on privacyguides.org. See Rule 2 for info on adding new recommendations to the website.
  12. General guides or software lists are not permitted. Original sources and research about specific topics are allowed as long as they are high quality and factual. We are not providing a platform for poorly-vetted, out-of-date or conflicting recommendations.

Additional Resources:

founded 1 year ago
MODERATORS