Last updated on October 2, 2025
No — EU data protection law and supervisory guidance require lawful basis, proportionality, transparency and DPIAs (Data Protection Impact Assessments) before deploying biometric surveillance like facial recognition in public spaces. Many national authorities have issued strict interpretations: blanket or non‑targeted public facial recognition is effectively banned or tightly constrained until robust safeguards exist. Municipalities and police forces must consult data protection authorities, publish legal justifications, and provide appeal routes for affected citizens. Deployments without approvals risk halting orders and heavy fines under GDPR.
https://edpb.europa.eu/our-work-tools/our-documents/guidelines/guidelines-032020-dpia_en
9/28/2023