Search

How can we help?

Icon

Is your tech discriminatory?

  • 10 April 2026
  • Privacy and Data Protection

Is your tech discriminatory?

Employers are increasingly reliant on technology to assist with all kinds of functions – from strengthening security to streamlining recruitment processes.

Most organisations will consider the basic data protection implications of incorporating technology into employee processes, but there are other legal risks that may be relevant but less obvious.

Indirect tech discrimination

There have been a number of claims in the press relating to facial recognition systems that allegedly indirectly discriminate on the ground of race.  Uber in particular has faced claims.  It has been reported that its drivers are required to log in by providing a photograph of their face and that if the photograph taken does not match the photograph on file, they risk having their account terminated. The Independent Workers Union of Great Britain (IWGB) and App Drivers and Couriers Union (ADCU) have both contended that Uber’s facial recognition system generates more inaccurate results when used by black and minority ethnic workers, leaving them more vulnerable to losing their jobs with Uber.

Automated decision-making (ADM)

UK GDPR gave data subjects the right not to be subject to a decision based solely on automated processing, including profiling, if the decision had legal effects or was otherwise significant in its impact save in very limited circumstances, namely where the data subject has explicitly consented, when the decision is necessary for the performance of a contract with the data subject or where it is required by law.  .

However, the law has since been relaxed by the Data (Use and Access) Act 2025 which retains the existing stringent rules for ADM involving special category data but for all other ADM, this can now be used (subject to compliance with the usual data protection principles) provided the data subject has been given information about the decision made about them, are able to make representations and challenge the decision and can obtain human intervention about the decision.

 

There have been a number of claims in the press relating to facial recognition systems that allegedly indirectly discriminate on the ground of race.

It’s an area of data protection that has remained relatively under-the-radar, and many organisations routinely declare that ADM is not taking place – without stopping to ask what ADM really means and when or where it might be used. With increased integration of AI into recruitment processes, this is one area where employers may need to revisit the default position of declaring ADM is not applicable.

The ICO is currently updating its guidance on the use of ADM. Employers would certainly benefit from guidance clearly delineating between decisions made solely by automatic means without human intervention and automated processes which merely assist human decision-making – with examples and case studies.

Watch this space

These developments indicate an important direction of travel. As technology becomes increasingly integrated into decision-making, employers need to recognise that their systems – as well as individual members of staff – could be a source of litigation risk.

Contact our employment and data protection team for further legal support.

Disclaimer
This information is for guidance purposes only and should not be regarded as a substitute for taking legal advice. Please refer to the full General Notices on our website.

Author profile
Louise Keenan

Associate

View profile

+44 118 960 4614

About this article

  • Subject
    Is your tech discriminatory?
  • Author
    Louise Keenan
  • Expertise
    Privacy and Data Protection
  • Published
    10 April 2026
employmentboddy logo
clipboard logo HR Resources

Bring your own device policy

This policy covers the use of employees’ own devices (e.g. smartphone, tablet, laptop) for company business.

FIND OUT MORE

Read, listen and watch our latest insights

art
  • 22 June 2026
  • Commercial Real Estate

Do you need an EPC for lease renewals? Key insights for commercial property owners

When is an EPC required for leases? The non-domestic EPC guidance makes it clear that an EPC is not required on renewal. The Ministry for Housing, Communities and Local Government’s (MHCLG’s) “A guide to energy performance certificates for the construction, sale and let of non-dwellings: Improving the energy efficiency of our buildings”
Pub
  • 18 June 2026
  • Employment

Employment Rights Act 2025: Key Changes for Employers

Join Katie Glendinning and Lucy White for an on demand webinar as they break down the key changes introduced by the Employment Rights Act 2025, offering clear insights into what these reforms mean in practice for employers and HR professionals.
art
  • 18 June 2026
  • Corporate and M&A

Business sales and NDAs: Creating a safe space to open up your business

You have accepted an offer to sell your business, but taking an agreement in principle through to completion may involve the need to divulge your company’s private information – perhaps deep secrets which have given your business its competitive edge.  
art
  • 16 June 2026
  • Employment

Shaping the Future of Work: Insights from the 114th ILO International Labour Conference

Having recently returned from the 114th Session of the International Labour Conference in Geneva, I have been reflecting on the work of the International Labour Organisation (ILO) and the important role it plays in global standard setting, as well as promoting social and economic inclusivity.
art
  • 11 June 2026
  • Immigration

MAC report reveals who stays in the UK on the Skilled Worker Route – Key insights for employers

Key insights from the MAC report: Who stays in the UK on the Skilled Worker route? Essential findings and takeaways for employers.
art
  • 08 June 2026
  • Privacy and Data Protection

FAQs – Privacy Documentation

Clearly documenting and regularly reviewing data protection policies and procedures is paramount to demonstrating compliance with the UK GDPR. It is essential that such policies are communicated within an entity and staff are regularly trained on these.

See More