22/05/2024Partner Carl Rohsler announces the publication of In Depth Gambling Law, published by Lexology
Memery Crystal Partner and leading gambling expert, Carl Rohsler, announces the publication of the ninth… Read more
04/03/2016
The Information Commissioner’s Office (ICO) has published guidance for organisations providing WiFi location analytics and services. It considers how operators of WiFi and other communication networks can use location and other analytic information in a way that complies with the Data Protection Act 1998.
What is WiFi analytics?
Mobile phones, tablets and other WiFi enabled devices contain a unique identifier. An identifier is specific to a device (although it can be modified or spoofed using software) and is also known as a ‘Media Access Control (MAC) address’.
WiFi analytics involves the use of information obtained through MAC addresses, which are transmitted by WiFi enabled devices when searching for WiFi networks. By way of example, if a WiFi enabled device is switched on it will continually signal to find the WiFi networks available in its geographical location. WiFi operators can collect these MAC addresses and use them to monitor a location of a device and track its behaviour over time. Such information could be personal data if individuals can be identified from the MAC addresses or other information held by network operators- without the individual’s knowledge.
Recommendations
The ICO guidance recommends that the WiFi operators:
What next?
It is clear that data can be collected from WiFi enabled devices without individuals having to connect to any WiFi network (all that is required is for the WiFi feature to be turned on), which increases the risk of data relating to an individual being collected and processed in a covert manner.
This guidance highlights the important role of the WiFi operator in a move to promote individual awareness of data collection in relation to WiFi analytics. It is not acceptable for data collected via MAC addresses to be processed without the device holder’s knowledge and WiFi operators must ensure that all practices followed are in line with their obligations under the Data Protection Act 1998.
Tim Ryan
Memery Crystal Partner and leading gambling expert, Carl Rohsler, announces the publication of the ninth… Read more
In this five-part audio series in association with The Gambling Law Review and Lexology, Partner and renowned gambling… Read more
In this five-part audio series in association with The Gambling Law Review and Lexology, Partner… Read more