McDonald’s has been accused of illegally collecting and processing customers’ voice recordings without their consent in the U.S. state of Illinois… The state has some of the strictest data privacy laws; its Biometric Information Privacy Act (BIPA) states: “No private entity may collect, capture, purchase, receive through trade, or otherwise obtain a person’s or a customer’s biometric identifier or biometric information.” unless it receives written consent.
“Plaintiff, like the other class members, to this day does not know the whereabouts of his voiceprint biometrics which defendant obtained,” Carpenter’s lawsuit stated. Under the BIPA, people can receive up to $5,000 in damages from private entities for each violation committed “intentionally or recklessly,” or $1,000 if each violation was from negligence instead.
The suit also claimed the machine-learning software built by McD Tech Labs doesn’t just transcribe speech into text, it processes audio samples to glean all sorts of personal information to predict a customer’s “age, gender, accent, nationality, and national origin.”
Read more of this story at Slashdot.