The eerie FaceApp photo filter, which uses AI to digitally age your face, has gone viral, with millions on social media sharing their sagging simulacrum, including celebs such as Drake, the Jonas Brothers and Kevin Hart.
However, experts warn that the free “old age filter,” created in 2017 by developers at Wireless Lab in St. Petersburg, Russia, poses security concerns that may give them access to your personal information and identity.
The Russian app is one of the most downloaded across the globe, with fans on social media using the hashtag #faceappchallenge to share their results. The tool augments your face to look double or triple your current age — with wrinkles, sagging and yellowed teeth — and also allows you to look younger, swap genders and try out a beard.
But be warned: FaceApp, which you grant permission to access your photo gallery, also includes in their Terms and Conditions that they have the right to modify, reproduce and publish any of the images you process through its AI.
That means that your face could end up being commercialized — or worse.
UK-based Digital strategist James Whatley said on Twitter, “You grant FaceApp a perpetual, irrevocable… royalty-free… license to use, adapt, publish, distribute your user content… in all media formats… when you post or otherwise share.”
That means they can also use your real name, your username or “any likeness provided” in any format without notifying, much less paying, you. They can retain that material as long as they want, even after you delete the app, and you won’t be able to stop them. Even those who set their Apple iOS photo permissions to “never,” as Tech Crunch points out, are not protected against the terms.
Security expert Ariel Hochstadt says that hackers, who are not infrequently agents of the Russian government, can log the websites visited and “the activities they perform in those websites,” though they might not know the identity of the person being tracked.
But when we also give them access to our phone’s camera, they can “secretly record” someone — who could be a targeted or prosecuted member of society, says Hochstadt, such as “a young gay person.” Now the hackers (and Russian government by proxy) can cross-reference your face and phone information with the websites you’re using.
Hochstadt continues, “They also know who this image is, with the huge database they created of Facebook accounts and faces, and the data they have on that person is both private and accurate to the name, city and other details found on Facebook.”
Even if hackers aren’t exactly working with the Russian government, says Hochstadt, “With so many breaches, they can get information and hack cameras that are out there, and be able to create a database of people all over the world, with information these people didn’t imagine is collected on them.”
Eventually, technology expert Steve Sammartino believes, your face will also be used to access even more critical private information, such as banking credentials.
“Your face is now a form of copyright where you need to be really careful who you give permission to access your biometric data,” he tells journalist Ben Fordham. “If you start using that willy-nilly, in the future when we’re using our face to access things, like our money and credit cards, then what we’ve done is we’ve handed the keys to others.”