BIP NYC

collapse
Home / Daily News Analysis / One day after discovery, Meta pulls facial recognition code from its smart glasses

One day after discovery, Meta pulls facial recognition code from its smart glasses

Jul 06, 2026  Twila Rosenbaum  3 views
One day after discovery, Meta pulls facial recognition code from its smart glasses

Just one day after a detailed investigative report by WIRED exposed that Meta had quietly embedded unreleased facial recognition software into the companion app for its smart glasses, the company removed the code entirely. The most recent version of the Meta AI app, which is installed on over 50 million devices, now contains no trace of the component libraries that powered the system internally referred to as NameTag. The version published on the day of WIRED's report included several code libraries explicitly labeled for facial recognition; the update released the following day stripped all of them away.

This rapid removal raises significant questions about Meta's decision-making process and its transparency regarding advanced biometric features. Andy Stone, Meta’s vice president of communications, told WIRED that the feature was "purely exploratory" and that "no final decision has been made on what to do here, if anything." However, the fact that substantial portions of the NameTag system had already been integrated into a widely distributed app—potentially capturing and storing biometric data without user knowledge—has fueled sharp criticism from privacy advocates and lawmakers.

According to WIRED's analysis, the NameTag system was designed to convert faces captured by the smart glasses into unique biometric signatures, commonly known as faceprints. These faceprints would then be compared against a database of known individuals stored locally on the user’s device. If the system failed to recognize a face, the image would be cropped, indexed, and stored locally for future processing. This means that any person walking past a user wearing Meta’s Ray-Ban Stories smart glasses could have their facial data captured and retained without their consent.

The controversy began earlier this year when The New York Times, citing internal Meta documents, reported that the company was developing facial recognition for its smart glasses and considering launching the feature as early as 2024. One memo reportedly described releasing it during a "dynamic political environment" when privacy and civil liberties advocates would be distracted. WIRED later revealed that much of NameTag's machinery was already built into the Meta AI app as early as January—months before any public announcement or regulatory review. After WIRED's latest report, Meta executives publicly dismissed the findings. Stone argued that the company could not answer questions about how the system would work because "the feature does not exist." Andrew Bosworth, Meta’s chief technology officer, called the reporting "incredibly misleading" and "absolutely dishonest." But the immediate removal of the code appears to contradict these denials.

The removal of the code does not undo the original decision to ship it. Kade Crockford, director of the technology for liberty program at the American Civil Liberties Union of Massachusetts, told WIRED that the incident underscores the urgent need for stronger consumer privacy protections. "Meta’s sneaky tactics in slipping the face-recognition code into its smart glasses show exactly why data privacy bills need the teeth of strong enforcement," Crockford said. "Companies like Meta prioritize their bottom line, so lawmakers need to speak in the only language its C-suite understands." Crockford pointed to a recent unanimous vote in the Massachusetts House of Representatives for a consumer privacy bill that includes a private right of action, allowing aggrieved users to sue. They urged other states to follow suit.

Facial recognition technology has long been a flashpoint in debates over privacy and civil liberties. In 2021, Meta shut down its Facebook facial recognition system, which had automatically tagged users in photos, and deleted over a billion faceprints following regulatory pressure and class action lawsuits. The company promised at the time that it would not deploy similar technology without user consent. Yet the emergence of NameTag suggests Meta was quietly developing a new generation of facial recognition, this time integrated into wearable devices. The implications are profound: smart glasses equipped with facial recognition could enable real-time identification of strangers on the street, raise the risk of stalking and harassment, and create a surveillance network without legal oversight.

The technical architecture of NameTag, as described by WIRED, involved several key components stored within the Meta AI app. These included a face detection module, a feature extraction algorithm to generate biometric templates, and a matching engine to compare templates against a stored database. Additionally, the app contained a folder for storing "unrecognized" face crops—images of people the system could not identify. This local storage was intended for future processing, potentially when the user encounters the same person again. The latest update removed all these components except for a few fragments: an internal debug menu label and a dormant link meant to open a recognized person’s profile. These leftovers point to parts of the system that are no longer present, but they also serve as a reminder of what Meta had built.

Meta did not answer key questions from WIRED regarding the NameTag system. Among the unanswered queries were whether Meta had already created the database of face profiles used by the feature, how long the app retains photographs and biometric data of unrecognized people stored on a user’s device, and whether that data would ever be sent back to Meta’s servers. The company also did not clarify if NameTag was specifically designed for blind or low-vision users, as some internal documents suggested, nor did it respond to criticism that the system could be weaponized by stalkers and abusers. Finally, Meta did not indicate whether users would be given a choice to opt in or opt out of the facial recognition capability.

The broader context of this controversy involves Meta's ongoing pivot toward augmented reality and wearable computing. The company has invested billions of dollars into its Reality Labs division, which produces the Quest virtual reality headsets and the Ray-Ban Stories smart glasses. In late 2023, Meta launched the second generation of its smart glasses in partnership with EssilorLuxottica, featuring improved cameras and integrated AI assistants. The Meta AI app serves as the control center for these devices, allowing users to manage settings, review media, and access AI-powered features. By embedding facial recognition code directly into this app, Meta effectively turned millions of phones into potential biometric surveillance tools without any public disclosure or regulatory approval.

Privacy experts argue that this incident highlights a systemic failure in both corporate governance and public policy. The US currently lacks a comprehensive federal privacy law, leaving consumers vulnerable to data collection practices that would be illegal in the European Union under the General Data Protection Regulation (GDPR). Several states, including California, Illinois, and Massachusetts, have enacted their own biometric privacy laws, but enforcement varies widely. The Illinois Biometric Information Privacy Act (BIPA) is among the strongest, allowing individuals to sue companies for violations. However, not all states have such protections, and Meta's national rollout of the Meta AI app meant that users in states without biometric laws could have been affected without recourse.

The timeline of events is particularly troubling. WIRED's investigation found that NameTag's code had been present in the Meta AI app since at least January 2024—a full year before the company's reported launch target. During this period, Meta publicly stated that it had made no final decision about facial recognition, even as it was distributing the software to millions of users. The removal of the code only after media exposure suggests that Meta was trying to avoid scrutiny rather than responsibly manage the feature's development. Stone's statement that the feature "does not exist" is at odds with the evidence of the code's existence and subsequent deletion.

Some industry analysts speculate that Meta may have been testing NameTag in a limited capacity or preparing for a future launch when the political climate is more favorable. The February 2024 report from The New York Times mentioned internal discussions about releasing the feature during a period of distraction—a strategy that privacy advocates find deeply cynical. The fact that the code was removed so quickly after WIRED's report indicates that Meta was not yet ready for the public scrutiny that such a feature would inevitably attract. It also raises questions about whether the company intended to quietly enable the feature in a future update without announcement.

The removal of the code does not erase the underlying development work. The facial recognition algorithms, databases, and processing pipelines that Meta built likely remain within the company's private repositories. Meta could theoretically reinstate the feature at any time with a simple app update. The company's refusal to commit to not deploying facial recognition in the future leaves the door open for future experiments. Moreover, the smart glasses themselves are hardware capable of capturing high-resolution images and video, making them ideal platforms for biometric identification. Without legal safeguards or binding commitments from Meta, the specter of ubiquitous facial recognition remains.

Civil liberties organizations are calling for immediate action. The Electronic Frontier Foundation (EFF) has urged Meta to publicly pledge never to deploy facial recognition in its smart glasses without explicit, informed consent from every individual captured. The ACLU is pushing for state-level privacy laws with robust enforcement mechanisms. In Massachusetts, the recently passed consumer privacy bill includes provisions that would require companies to obtain opt-in consent before collecting biometric data and to allow individuals to sue for violations. If enacted, such laws would set a precedent for other states and potentially force Meta to reconsider its approach.

The long-term implications for Meta's reputation are uncertain. The company has been fined billions of dollars by European regulators for privacy violations and has faced numerous lawsuits in the US over data handling practices. The NameTag incident adds to this pattern of pushing boundaries before regulators catch up. However, Meta's core business of social media advertising remains profitable, and its investments in augmented reality are seen as crucial for future growth. Whether the company will learn from this episode or continue to test the limits of consumer privacy remains to be seen.

In the absence of federal legislation, the burden falls on users to protect their own data. Individuals can choose not to buy Meta's smart glasses or to disable features that rely on camera access. But for many people, especially those in public spaces, avoiding being captured by someone else's device is nearly impossible. The only real solution is a legal framework that treats biometric data as sensitive as medical or financial information, requiring companies to obtain explicit consent before collection and allowing individuals to enforce their rights through the courts. Until such laws are enacted, incidents like the NameTag controversy will continue to erode trust in technology companies and raise fundamental questions about privacy in the age of always-connected cameras.


Source: Ars Technica News


Share:

Your experience on this site will be improved by allowing cookies Cookie Policy