Author: Olivia Clouting and Sara Cetinja

Biometric data is defined in Article 4(14) of the General Data Protection Regulation (GDPR) as any ‘personal data resulting from specific technical processing relating to the physical, physiological or behavioural characteristics of a natural person, which allow or confirm the unique identification of that natural person, such as facial images or dactyloscopy data’.