Metro-North Railroad Collecting Fingerprints from Employees

Metro North Railroad was found to forcing conductors and engineers scan a fingerprint to keep track of their work hours as a strategy against overtime cheats.

Description

In December 2019 Metro North Railroad (owned by Metropolitan Transportation Authority) was found to having a strategy against overtime cheats by making conductors and engineers scan a fingerprint to keep track of their work hours. Collection of fingerprints here can be interpreted as Surveillance: the biometric information of individuals was collected for watching the individuals’ activities without proper informing them about the means and purposes of the processing of this data. The company also did not collect proper consent from the individuals: employees who refuse to scan in and out by way of biometric time clocks could face discipline or lose their job, according to Association of Commuter Rail Employees. It is known, that before the introduction of the fingerprints collection strategy, employees had to check in and out with an company-issued swipe card and to sign in electronically. Either of those systems could be used to determine if an employee was cheating the system. The use of swipe cards or other electronic devices is less privacy violating, since such data can be changed or replaced if stolen or compromised, whereas fingerprints are unique, permanent biometric identifiers associated with each individual. However, the company nevertheless introduced the fingerprinting strategy.

Risk Statistics

Laws and Regulations

Sources

https://themarkup.org/ask-the-markup/2020/03/17/fingerprint-timeclock-biometrics-work
https://eu.lohud.com/story/news/investigations/2019/08/15/metro-north-worker-fingerprints/2019570001/