On 27 September 2016, the French National Data Protection Authority (CNIL) announced the adoption of two Single Authorizations on biometric systems implemented by businesses to control the access to the premises, software applications and/or devices in the workplace:

  • Single Authorization AU-052, which covers biometric systems allowing the data subject to keep control of his biometric information, either stored on a device held by the data subject or within a database in a form unusable without the involvement of the latter.
  • Single Authorization AU-053, which covers biometric systems that do not allow the data subject to keep control of his biometric information. 

The new Single Authorizations AU-052 and AU-053 repeal the existing Single Authorizations AU-007, AU-008, AU-019 and AU-027