Is it OK to collect biometric data from workers?
By: Anthony Drake
Published: 21/03/2018
The growth and progress in new forms of technology introduce even more challenges for both employers and employees.  The Internet has globalised the business world.  Companies engage in numerous transactions and communications through technology every second of the day.  It is well recognised that information technology does not adhere to the geographical boundaries that are normally associated with physical location, and by its very nature there are particular risks associated with collection, storage and deletion of such data.

The collection of employee biometric data (scan of fingerprint to clock in and out, to confirm identity, and used as a security measure) is becoming increasingly commonplace.  The collection of biometric data includes not only fingerprint, but voiceprint, or the scan of a person’s retina, iris, face or hand.  It is easy to see how some employers could view the introduction of electronic scanning as helpful to eliminate common forms of timekeeping fraud and to produce a more streamlined operation.

The main problem with the collection of biometric data is the invariable nature of biometric identifiers.  Personal identifiable information such as driver’s licences and passport numbers can be changed, whereas biometrics (fingerprints, DNA, eye scans) are ‘biologically unique’ and unchangeable. There are also concerns that the collection of such biometric information is more intrusive on an employee's privacy.  This raises the important issue of employers needing to have robust data protection policies in place around the collection, retention and deletion of biometric data if they wish to introduce such practices.

As part of this, employers will need to consult with employees and obtain their consent before introducing the collection of biometric data.  The Employment Court considered this issue in OCS Limited v Food Workers Union Nga RingaTota Inc & Anor WN WC 15/06 31 August 2006.  The Court provided some helpful guidance on the legality of employers using biometric technology and found:
  • The technology needs to be compatible with the contractual obligations of the parties
  • There needs to be a balance between the need for the technology and the level of personal intrusiveness involved for the individual concerned  
  • Employers have the right to introduce different systems of timekeeping technology subject to reasonable consideration of valid concerns raised by the union and/or employees
  • The employer must take reasonable steps to inform employees of the new measures and to obtain their consent
So what does this mean for employers?

If you are considering using a practice that involves the use of biometrics, or any other potentially sensitive information, you will need to consider privacy principles and the helpful guidance provided by the Employment Court.  If you have already adopted such a practice, then check to ensure that you are compliant with the Privacy Act's principles on collection, storage and deletion, and review your current level of transparency with your employees.
 
Download article in PDF format



Enter security code:
 Security code

Wynn Williams Christchurch
Level 5, Wynn Williams House, 47 Hereford Street, Christchurch 8013, New Zealand.
PO Box 4341, DX WX11179, Christchurch 8140.
+64 3 379 7622
+64 3 379 2467
Wynn Williams Auckland
Level 25, Vero Centre, 48 Shortland Street, Auckland 1010, New Zealand.
PO Box 2401, Shortland Street, Auckland 1140.
+64 9 300 2600
+64 9 300 2609
Top

This page is best viewed in an up-to-date web browser with stylesheets (CSS) enabled. While you will be able to view the content of this page in your current browser, you will not be able to get the full visual experience. Please consider upgrading your browser software or enabling style sheets (CSS) if you are able to do so. The latest version of Firefox, Safari or Google Chrome will work best if you're after a new browser.