Major tech companies are facing mounting scrutiny over privacy violations involving biometrics and surveillance. Meta’s smart glasses companion app, downloaded 50 million times, was found containing hidden facial recognition code called NameTag, contradicting the company’s April 2026 denial of such plans. Meta has already paid $650 million and $1.4 billion in biometric data penalties in Illinois and Texas respectively. Meanwhile, an open-source tool called Goose now bypasses Whoop’s subscription model by intercepting fitness band data via Bluetooth. Microsoft plans a Teams feature launching by end of June 2026, automatically detecting employee locations through Wi-Fi signals, raising co-determination concerns among Austrian labor law experts.
In-Depth:
Meta faces backlash over hidden face-recognition code; open-source tool bypasses Whoop subscriptions; Microsoft tracks office locations via Wi-Fi.
A new privacy flashpoint is emerging as major tech players push deeper into biometric and location-based features, drawing regulatory scrutiny and consumer backlash across Europe and the United States.
The most explosive discovery comes from Meta. Developers have unearthed code for a face-recognition feature called NameTag inside the companion app for the company’s smart glasses. That app has been downloaded roughly 50 million times. Biometric templates, according to the code, would be created locally on the applyr’s smartphone. Meta insists the code is part of an internal test and that no product launch is planned. The problem? Just a month earlier, in April 2026, the company publicly stated it had no intention of adding facial recognition to its glasses.
The find hardly surprises privacy watchers. Meta has already paid staggering penalties in the United States: $650 million in Illinois and $1.4 billion in Texas for violating biometric data protection laws.
Local authorities are not waiting for Meta’s next relocate. In June 2026, the city of Potsdam became the first German municipality to ban smart glasses in public swimming pools and saunas. At the federal level, Germany’s network regulator, the Bundesnetzagentur, has threatened a sales ban on models where recording signals can be easily disabled.
Fitness data, no subscription required
While Meta wrestles with public trust, a separate privacy battle is brewing in the wearable-tech market. A developer has released an open-source tool called Goose that intercepts data from Whoop fitness bands over Bluetooth. Vital signs can then be processed locally on a smartphone, bypassing the company’s paid subscription service. Whoop, which counts around 2.5 million applyrs and has raised $575 million in funding, has operated a tightly closed ecosystem with monthly fees. Goose tarreceives applyrs who want control of their data without cloud depfinishency or extra costs.
Meanwhile, Google and Samsung are taking a more flexible approach. Google’s new Fitbit Air sells for roughly €100, comes without a display, and tracks heart rate, blood oxygen, and skin temperature. Basic functions are free; a premium subscription costing about €10 per month remains optional. Samsung, for its part, announced in June 2026 an update to its Health platform featuring a night-time AI monitoring tool called Vitals. It checks heart rate variability and breathing rate, issuing alerts only for relevant anomalies. The feature previews the next Galaxy Watch, expected by the finish of July 2026.
Microsoft tracks where you work
Office workers face a different kind of surveillance. Microsoft plans to roll out a Teams feature by the finish of June 2026 that automatically detects an employee’s workplace location applying Wi-Fi signals. The company promises no history logs are kept and that data is deleted at the finish of each day. The feature is switched off by default. But labor law experts in Austria warn that introducing such a system requires co-determination by the works council. They urge companies to conduct a mandatory data-protection impact assessment before turning it on.
The combination of biometric scanning, subscription-free data extraction, and workplace location tracking underscores a broader tension: technology capable of unprecedented personal monitoring is advancing rapider than the legal frameworks meant to contain it.
