Italy: Issued interim ruling in GPDP investigation into Worldcoin's data collection and processing practices compliance with GDPR

Description

Issued interim ruling in GPDP investigation into Worldcoin's data collection and processing practices compliance with GDPR

On 2 April 2024, the Italian Privacy Authority (GPDP) issued an interim ruling in its investigation into Worldcoin. Specifically, the investigation concerned the Worldcoin project of creating a global identity called World ID and a global financial network and its compliance with the General Data Protection Regulation (GDPR). Worldcoin aims to create a World ID through biometric identification, such as the face and iris, in exchange for WLD cryptocurrency. The collection of data is based on the user's consent. The GPDP's investigation concerns the validity of this consent in light of the alleged insufficient information basis and the receipt of free WLD tokens in exchange for the data. The GPDP preliminarily found, based on information provided by Worldcoin and information available on its website, that this consent does not meet the requirements for a valid consent. Further, the GPDP noted its concern with the lack of age verification mechanisms.

Original source

Scope

Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
digital payment provider (incl. cryptocurrencies)
Implementation Level
national
Government Branch
executive
Government Body
data protection authority

Complete timeline of this policy change

Hide details
2024-04-02
under investigation

On 2 April 2024, the Italian Privacy Authority (GPDP) issued an interim ruling in its investigation…

We use cookies and other technologies to perform analytics on our website. By opting in, you consent to the use by us and our third-party partners of cookies and data gathered from your use of our platform. See our Privacy Policy to learn more about the use of data and your rights.