A website which lets individuals watch over companies' CCTV footage via the web has been forced to make privacy changes.
The Internet Eyes service sparked privacy concerns when it was first announced in 2009, leading the Information Commissioner's Office (ICO) to delay the launch of the website while the watchdog carried out an investigation.
Privacy groups were upset when the ICO decided to let the website go live in October 2010.
It appears the ICO has kept a close eye on Internet Eyes, however, and today ordered changes after video footage from the service was seen on YouTube.
"CCTV footage should not end up on YouTube when it shows someone simply out doing their shopping. A person's CCTV image is their personal data," said deputy commissioner David Smith.
"The law says that it should only be disclosed where necessary, such as for the purposes of crime detection, and not merely for entertainment."
The ICO said it had only received one complaint about Internet Eyes, which offers rewards of up to 1,000 for members who spot shoplifters when viewing the footage.
An ICO investigation discovered Internet Eyes did not ensure the transfer of CCTV images it was streaming to viewers was encrypted.
As Internet Eyes did not track its viewers' activities, it was not able to identify which viewer posted the clip on YouTube, the ICO said.
Internet Eyes has now agreed to encrypt the transfer of CCTV images, as well as establish an audit trail for viewer activity and ensure "proper checks" are carried out on registered viewers.
Furthermore, from 31 July, the service has been told to ensure no viewer can access footage from cameras located in their postcode, or in any postcode district within a 30 mile radius of their registered location.
"We will continue to keep a close watch on them [Internet Eyes] and do not rule out taking more formal enforcement action if further complaints are received," Smith added.
Not good enough?
Privacy groups may not be won over by the ICO's actions, however.
Daniel Hamilton, director of the Big Brother Watch, was not convinced the ICO had gone far enough.
"Today's ruling does little to address fundamental concerns many have about this system and its impact upon personal privacy," Hamilton told IT Pro.
"It's fundamentally wrong to hand untrained and unaccountable voyeurs the power to monitor CCTV images. This should be left to trained professionals."
-
M&S suspends online sales as 'cyber incident' continuesNews Marks & Spencer (M&S) has informed customers that all online and app sales have been suspended as the high street retailer battles a ‘cyber incident’.
-
Manners cost nothing, unless you’re using ChatGPTOpinion Polite users are costing OpenAI millions of dollars each year – but Ps and Qs are a small dent in what ChatGPT could cost the planet
-
AI recruitment tools are still a privacy nightmare – here's how the ICO plans to crack down on misuseNews The ICO has issued guidance for recruiters and AI developers after finding that many are mishandling data
-
“You must do better”: Information Commissioner John Edwards calls on firms to beef up support for data breach victimsNews Companies need to treat victims with swift, practical action, according to the ICO
-
LinkedIn backtracks on AI training rules after user backlashNews UK-based LinkedIn users will now get the same protections as those elsewhere in Europe
-
UK's data protection watchdog deepens cooperation with National Crime AgencyNews The two bodies want to improve the support given to organizations experiencing cyber attacks and ransomware recovery
-
ICO slams Electoral Commission over security failuresNews The Electoral Commission has been reprimanded for poor security practices, including a failure to install security updates and weak password policies
-
Disgruntled ex-employees are using ‘weaponized’ data subject access requests to pester firmsNews Some disgruntled staff are using DSARs as a means to pressure former employers into a financial settlement
-
ICO reprimands Coventry school over repeated data protection failuresNews The ICO said the academy trust failed to follow previous guidance, which caused a serious data breach
-
ICO dishes out fine to HelloFresh for marketing spam campaignNews HelloFresh failed to offer proper opt-outs, the ICO said, and customers weren’t warned their data would be used for months after they cancelled
