Spain: Spanish Data Protection Agency opened an investigation into Yoti over alleged infringements of data protection regulations
Description
Spanish Data Protection Agency opened an investigation into Yoti over alleged infringements of data protection regulations
On 12 December 2023, the Spanish Data Protection Agency (AEPD) opened an inquiry into Yoti regarding its role as an intermediary in identity and age-verification processes. The review focuses on the security and privacy framework of Yoti’s system, including data retention, encryption practices, and the handling of data for users aged 13 and above, compared with adults. The AEPD will also examine how consent is obtained for the processing of biometric data for research and development purposes, particularly for users under 14.
Original sourceScope
Policy Area
Data governance
Policy Instrument
Data protection regulation
Regulated Economic Activity
software provider: other software
Implementation Level
national
Government Branch
executive
Government Body
data protection authority