Surprise! Audit finds automated license plate reader programs are a privacy nightmare
1Reported today on TechCrunch
For the full article visit: https://techcrunch.com/2020/02/13/surprise-audit-finds-automated-license-plate-reader-programs-are-a-privacy-nightmare/
Surprise! Audit finds automated license plate reader programs are a privacy nightmare
Automated license plate readers, ALPRs, would be controversial even if they were responsibly employed by the governments that run them. Unfortunately, and to no one's surprise, the way they actually operate is "deeply disturbing and confirm[s] our worst fears about the misuse of this data," according to an audit of the programs instigated by a Californian legislator.
"What we've learned today is that many law enforcement agencies are violating state law, are retaining personal data for lengthy periods of time, and are disseminating this personal data broadly. This state of affairs is totally unacceptable," said California State Senator Scott Weiner (D-SF), who called for the audit of these programs. The four agencies audited were the LAPD, Fresno PD and the Marin and Sacramento County Sheriffs Departments.
Police license plate readers are still exposed on the internet
The inquiry revealed that the programs can barely justify their existence and do not seem to have, let alone follow, best practices for security and privacy:
Los Angeles alone stores 320 million license plate images, 99.9% of which were not being sought by law enforcement at the time of collection.
Those images were shared with "hundreds" of other agencies but there was no record of how this was justified legally or accomplished properly.
None of the agencies has a privacy policy in line with requirements established in 2016. Three could not adequately explain access and oversight permissions, or how and when data would or could be destroyed, "and the remaining agency has not developed a policy at all."
There were almost no policies or protections regarding account creation and use and h