Red Rose UK - Sex Offenders Database & UK Offender Search

Facial Recognition and Biometric Data Processing Policy

Effective date: December 2025

Status: Active – subject to ongoing review and governance oversight

This Facial Recognition and Biometric Data Processing Policy (“Biometric Policy”) sets out, in comprehensive detail, the legal basis, technical design, operational safeguards, governance controls, and risk mitigation measures governing the use of facial recognition and biometric data processing by Red Rose UK.

This Policy is drafted to demonstrate compliance with:

This Policy must be read alongside Red Rose UK’s Privacy Policy, Data Retention & Disposal Policy, Data Subject Rights & Erasure Handling Policy, and internal Data Protection Impact Assessment (DPIA).


1. Purpose and Safeguarding Context

Red Rose UK operates a safeguarding and public awareness platform concerned with serious criminal behaviour that presents ongoing risk to vulnerable individuals and the wider public. As part of this mission, Red Rose UK has implemented a facial recognition capability intended to support awareness, identification assistance, and informed safeguarding decisions.

The facial recognition capability is not designed, marketed, or operated as:

The purpose of the system is limited and specific: to assist users in determining whether an image they already possess may correspond to an individual already associated with verified safeguarding-relevant information on the Red Rose UK platform.

The system operates within a broader safeguarding ecosystem that prioritises proportionality, transparency, human judgment, and harm prevention.


2. Definitions and Terminology


3. Scope of Biometric Processing

This Policy applies to all biometric processing conducted by or on behalf of Red Rose UK, including:

This Policy does not apply to:


4. System Architecture and Technical Design

4.1 Enrollment of reference images

Only images that are already associated with verified profiles on the Red Rose UK platform are enrolled into the facial recognition system. These images are sourced from:

No images are collected covertly. No images are scraped from private accounts. No images are uploaded by third parties for enrollment.

Enrollment is a controlled administrative process subject to audit logging and oversight.

4.2 Generation of facial templates

Facial templates are generated using standard feature-extraction techniques that convert pixel data into numerical vectors representing facial geometry. These templates:

4.3 User-uploaded images

Users may upload a single image for comparison. User uploads are:

User-uploaded images are not added to the template database and are not reused for any purpose beyond the immediate comparison session.


5. Explicit Non-Surveillance Position

Red Rose UK expressly confirms that:

The system is therefore not considered “systematic monitoring of publicly accessible places” within the meaning of Article 35 UK GDPR or ICO guidance on live facial recognition.


6. Lawful Basis – Article 6 UK GDPR

Biometric processing is carried out under Article 6(1)(f) UK GDPR (legitimate interests).

The legitimate interests pursued include:

These interests are assessed as compelling given the nature of the offences involved and the platform’s protective objectives.


7. Special Category Condition – Article 9 UK GDPR

As biometric data constitutes special category data, Red Rose UK relies on Article 9(2)(g) UK GDPR – processing necessary for reasons of substantial public interest.

The substantial public interest relied upon includes:

This processing is supported by appropriate safeguards, including strict purpose limitation, data minimisation, retention controls, and human oversight.


8. Explicit Rejection of Consent-Based Processing

Red Rose UK does not rely on consent as a lawful basis or Article 9 condition for biometric processing.

This is because:

Users are provided with transparency and choice regarding use of the feature, but consent is not relied upon as the legal basis.


9. Automated Decision-Making and Article 22

Red Rose UK does not make decisions producing legal effects or similarly significant effects solely by automated means.

Facial recognition outputs:

Accordingly, Article 22 UK GDPR does not apply to the facial recognition system.


10. Accuracy, Error Rates, and False Positives

Red Rose UK acknowledges that facial recognition systems are not infallible and may generate false positives or false negatives.

To mitigate this risk:

The system is designed to support awareness, not replace human judgment.


11. Bias, Fairness, and Demographic Considerations

Red Rose UK recognises industry-wide concerns regarding demographic bias in facial recognition technologies.

Mitigation measures include:

No automated outcomes are applied that could disproportionately affect individuals based on protected characteristics.


12. Retention of Biometric Data

12.1 Facial templates

Facial templates derived from verified profile images are retained for as long as the underlying profile remains active and subject to retention review.

12.2 User-uploaded images

User-uploaded images are retained for no longer than 24 hours and are automatically deleted.


13. Security and Access Controls

Biometric data is protected by layered technical and organisational measures, including:


14. Data Protection Impact Assessment (DPIA) Alignment

Red Rose UK recognises that facial recognition and biometric processing constitute high-risk processing within the meaning of Article 35 UK GDPR.

Accordingly, biometric processing is governed by a dedicated Data Protection Impact Assessment (“DPIA”), which:

  • Identifies foreseeable risks to the rights and freedoms of individuals
  • Assesses likelihood and severity of those risks
  • Documents mitigations and safeguards
  • Assesses residual risk following mitigation

This Biometric Policy is designed to operate in direct alignment with the DPIA. Where the DPIA identifies elevated or changing risk, this Policy may be amended, restricted, or suspended accordingly.

The DPIA is maintained as a living document and is subject to periodic review, including when:

  • Material changes are made to the facial recognition system
  • New biometric technologies are introduced
  • Relevant ICO guidance or legal standards change
  • Any data protection incident occurs

15. Risk Identification and Categorisation

Red Rose UK has identified the following biometric-specific risks:

  • Risk of false positive identification
  • Risk of misinterpretation by users
  • Risk of demographic bias or unequal accuracy
  • Risk of unauthorised access to biometric data
  • Risk of excessive retention
  • Risk of function creep beyond safeguarding purposes

Each risk is assessed internally by reference to:

  • Likelihood of occurrence
  • Severity of potential harm
  • Availability and effectiveness of mitigation

Risks are categorised as low, medium, or high prior to mitigation, and reassessed following implementation of controls.


16. Risk Mitigation Measures

16.1 False positives and misidentification

  • Use of conservative similarity thresholds
  • Presentation of results as indicative, not definitive
  • Explicit warnings that outputs are not proof of identity
  • Prohibition on taking action based solely on facial recognition output

16.2 User misuse and misinterpretation

  • Clear user-facing disclaimers
  • Contextual explanations of system limitations
  • Restriction of outputs to informational purposes only

16.3 Bias and fairness

  • Acknowledgement of industry-wide bias risks
  • Human oversight of all consequential interpretation
  • Ongoing monitoring of performance indicators

16.4 Security risks

  • Segregation of biometric processing components
  • Role-based access controls
  • Audit logging of administrative access
  • Encrypted transmission and secure infrastructure

17. Explicit Rejection of Systematic Monitoring

Red Rose UK explicitly states that its facial recognition system:

  • Does not involve systematic monitoring of publicly accessible spaces
  • Does not ingest live or recorded CCTV footage
  • Does not conduct continuous observation
  • Does not track individuals over time

The system operates only in response to a deliberate, user-initiated upload and therefore falls outside the scope of “systematic monitoring” contemplated by Article 35 UK GDPR and ICO live facial recognition guidance.


18. No Law Enforcement Function

Red Rose UK is not a law enforcement authority and does not purport to exercise law enforcement powers.

Facial recognition outputs are not:

  • Shared automatically with police
  • Used to initiate enforcement action
  • Used to determine arrest, charge, or prosecution

Any interaction with law enforcement occurs only following independent reporting by users or Red Rose UK and is based on corroborated information, not biometric output alone.


19. Human Oversight and Governance

Human oversight is central to the biometric processing framework.

Oversight measures include:

  • DPO review of biometric governance
  • Administrative controls over enrollment and configuration
  • Audit review of access and changes
  • Escalation pathways for identified risks

No automated output triggers irreversible actions without human consideration.


20. Data Subject Rights in Relation to Biometric Data

Data subjects may exercise rights under UK GDPR in relation to biometric data, including:

  • Right of access
  • Right to rectification
  • Right to object
  • Right to restriction
  • Right to erasure (subject to lawful exemptions)

Requests relating to biometric processing are subject to heightened scrutiny due to the sensitivity of the data and are overseen by the Data Protection Officer.


21. Incident Response and Breach Management

Any suspected or confirmed personal data breach involving biometric data is treated as a high-severity incident.

Incident response includes:

  • Immediate containment and investigation
  • DPO notification and oversight
  • Risk assessment regarding impact on individuals
  • Notification to the ICO where required under Article 33 UK GDPR
  • Notification to affected individuals where required under Article 34 UK GDPR

22. Suspension, Restriction and Fallback Controls

Red Rose UK recognises that biometric processing must remain proportionate and defensible.

Accordingly, Red Rose UK reserves the right to:

  • Restrict access to the facial recognition feature
  • Suspend biometric processing temporarily
  • Disable the feature entirely

Triggers for restriction or suspension include:

  • Identification of unmitigated high risk
  • Material adverse findings in the DPIA
  • Regulatory guidance indicating increased risk
  • Security incidents affecting biometric data

23. Third-Party Processors and International Transfers

Biometric processing may rely on infrastructure or services provided by third-party processors, including hosting and content delivery providers.

Where personal data is transferred outside the UK, Red Rose UK ensures appropriate safeguards are in place in accordance with Chapter V UK GDPR.

No third-party processors are permitted to use biometric data for their own purposes.


24. Transparency and Public Information

Information about biometric processing is made available through:

  • This Facial Recognition and Biometric Data Processing Policy
  • The Privacy Policy
  • Contextual notices within the platform

Red Rose UK recognises transparency as a core safeguard in maintaining public trust.


25. Policy Review and Continuous Improvement

This Policy is reviewed periodically to ensure continued compliance with:

  • UK GDPR
  • Data Protection Act 2018
  • ICO guidance
  • Best practice in biometric governance

Where improvements are identified, Red Rose UK commits to implementing them in a timely and proportionate manner.


26. Approval and Oversight

This Policy has been reviewed and approved by the Data Protection Officer.

Name: Oliver Fulleylove
Role: Founder & Data Protection Officer
Date: December 2025