Today the United Kingdom became the latest country to order a facial recognition software company to delete all data it holds on its residents. That’s a string of big wins for civil libertarians and the privacy-minded. But how do governments actually enforce these bans? How do we know that data isn’t living on some secret server, waiting for a more favorable regulatory environment, or whether companies might even continue to use them in defiance of a court order? Omer Tene, a Data, Privacy & Cybersecurity partner at Goodwin and former arbitrator for the U.S.-EU Privacy Shield Agreement, said it depends on the country, but the implicit threat of criminal prosecution serves as a “stick” that may not need to be enforced to be effective. Read the Politico article here.