Biometric data regulation

Biometric data regulation protects data derived from physical, physiological or behavioural traits used to identify or authenticate a person. Examples include facial recognition templates, fingerprints, iris scans, voiceprints and gait patterns. In Switzerland, such processing requires a strong legal basis, transparent information, purpose limitation, proportionality, adequate security and careful assessment of sensitive-data risks. Public-sector uses, workplace monitoring, access control and law-enforcement contexts raise distinct issues. Cross-border systems must also consider European and international privacy expectations, vendor controls and retention limits.