GUFF HOUSE (UK) co-mingled by Ian Adamson: (GUF) WHEN SHOPS CANCEL YOU (PART 2)

Thursday, 1 January 2026

(GUF) WHEN SHOPS CANCEL YOU (PART 2)

If a supermarket is using facial recognition for identification, you are legally entitled to ask a clear and specific set of questions about that processing.

Under Articles 13, 14 and 15 of the UK GDPR, individuals have a right to transparency about how their personal data is used, particularly where high-risk biometric data is involved.

Article 13 applies where data is collected directly from you (for example, in-store facial capture). It requires the organisation to explain the purpose of processing, the legal basis relied upon, retention periods, and your rights.

Article 14 applies where data is obtained indirectly (for example via a watchlist or third-party system), and adds the requirement to explain the source of that data.

Article 15 establishes the Right of Access, commonly exercised via a Subject Access Request (SAR), allowing you to obtain confirmation that your data is being processed and meaningful details about how.

In simple terms, you are entitled to ask:

• What personal data they hold about you
• Why they’re holding it
• Where it came from
• Who it’s shared with (or the categories of recipients)
• How long they plan to keep it

These rights are not optional or discretionary — they are core GDPR obligations.

For clarity, where a shop captures biometric facial recognition data, a Data Protection Impact Assessment (DPIA) is mandatory. While the DPIA document itself may remain internal, the outcomes, risks, and safeguards cannot be hidden.

You are therefore fully entitled to ask questions such as:

• Has a DPIA been carried out for this facial recognition system?
• What key risks were identified?
• What safeguards were put in place as a result?
• Is biometric data stored, or merely processed transiently?
• Is it shared with third parties or suppliers?
• What human oversight exists?
• How can an individual challenge or object to the processing?

If an organisation refuses to answer those questions, that is a red flag, not because the DPIA itself must be disclosed but because UK GDPR requires meaningful transparency, particularly where biometric identification is concerned. More like this (GDPR) - link - more like this (digital ID) - link - more like this (supermarkets) - link

No comments:

MY TOP 20

Lost In Music - Sister Sledge
I Feel Love - Donna Summer
Good Life - Inner City
Messages 10" - OMD
Little Fluffy Clouds - The Orb
Chime - Orbital
Hey Now - London Grammer
This is the day - The The
Insomnia - Faithless
Lost Again - Yello
Theme For Great Cities - Simple Minds
Fascinating Rhythm - Bassomatic
Sweet About Me - Gabriella Cilmi
Infected - The The
Unfinished Sympathy - Massive Attack
Everybody's Got to Learn Sometime - The Korgis
Geisha Boys And Temple Girls - Heaven 17
When Love Takes Over - David Guetta
Slave To The Rhythm - Grace Jones
Lost Without You (Kia Remix) - Freya Ridings

Curriculum vitae

The last time I looked, I wasn’t in ‘American Tarzan’, I’m too lazy to be an endurance athlete and I’m not an Irish Royalist or Ulster Loyalist - I am however an Ian Adamson.

I was born in Kent but grew up in Caversham, Reading, most notably in the 1980s which were the best of times.

On that note - try and find anything that mentions or shows Caversham's Night Club - nothing - you'd think that Nue Valbonne was the first of it's kind - sad.

I started my working life at '875' Sainsbury's in Friar Street, Reading then moved to Music Market in Smelly Alley before curtailing all possibility of creativity, fulfilment and fun by joining the waste industry.

I am to this date still existing in the waste management industry based in Reading - working between Reading and Oxford with two inspiring clients.

GUFF HOUSE (UK) co-mingled by Ian Adamson

born at 321.89 PPM CO2

Thursday, 1 January 2026

(GUF) WHEN SHOPS CANCEL YOU (PART 2)

No comments:

Post a Comment