What Was Discovered in Meta’s Smart Glasses App?
Meta’s smart glasses companion app contains a dormant feature called NameTag, a hidden facial recognition system that can identify people using faceprint tracking technology and store biometric data on the user’s phone, raising major concerns about Meta smart glasses surveillance and consent in everyday spaces. Investigations by WIRED and researchers at Buchodi, confirmed by the Electronic Frontier Foundation’s Threat Lab through static code analysis, show that the Meta AI app (internally known as Stella) ships with three machine-learning models for detecting, aligning, and embedding faces into 2,048-number vectors. These vectors act as biometric fingerprints that can be saved in a local database on the phone. Although the feature is not exposed in the user interface, researchers were able to manually add a face through debug tools and have the glasses recognize it later, proving the full end-to-end pipeline already works behind the scenes.
How Faceprint Tracking Technology Works on Your Phone
Faceprint tracking technology converts a person’s face into a mathematical template rather than storing a raw image of their appearance. In Meta’s system, the app uses models such as SCRFD for face detection, KPSAligner for positioning, and an SFace variant to build a 2,048-dimensional faceprint. These vectors are stored in an SQLite vector database on the device, designed for similarity matching across many faces. Unknown faces can be saved as cropped images plus binary embedding files in a private directory that survives reboots, creating a “faces pending identification” pool. When the glasses see a face, the app compares the new vector to those stored locally and, if there is a match, can trigger a “Person recognized” notification. While Meta says it is not building a central face database, the local system already behaves like a personal surveillance archive in your pocket.
Biometric Data Privacy, Consent, and Always-On Wearables
Biometric data privacy is different from other data risks because faceprints cannot be changed like a password if they are misused or exposed. NameTag is especially troubling on always-on wearables: Meta smart glasses surveillance can silently convert every face in view into biometric data, whether or not those people ever agreed. There is no clear opt-out path for bystanders, and current builds keep the interface for features like “Connections” hidden while the back-end recognition pipeline runs. This creates a consent gap: wearers may not fully understand what is happening, and people around them have even less control. According to EFF, Meta has “created the capacity to turn their customers into a distributed surveillance machine,” a description that captures how a network of ordinary users could effectively function as roaming facial recognition cameras in public and semi-private spaces.
Meta’s History With Facial Recognition and Legal Fallout
The facial recognition code discovered in the Meta AI app marks a return to a technology Meta said it had shut down. In 2021, the company announced it would disable Facebook’s facial recognition system and delete more than a billion stored faceprints after years of criticism and biometric privacy lawsuits. Meta has already paid USD 650 million (approx. RM3,000,000,000) to settle a BIPA case over mass facial recognition in photos, with a later USD 1.4 billion (approx. RM6,400,000,000) settlement in Texas. Despite this, WIRED and EFF found that NameTag code has been bundled into multiple app updates since January for millions of Ray-Ban Meta and related devices. Meta now says the feature is only experimental and that it is not building a centralized face database, promising to move carefully and be transparent. The continued presence of the code suggests an ongoing appetite to revive face-based features, even after costly backlash.
What Users Should Do Now About Meta Smart Glasses Surveillance
For users, the most important step is to treat Meta smart glasses surveillance as a present technical capability, even if the company has not turned on the full feature set. Disable any optional data-sharing settings in the companion app, and review app permissions for camera, photos, and background activity. If you do not want faceprint tracking technology in your life, consider not buying or pausing use of the glasses until Meta offers clear, granular controls and external audits. Be transparent with friends, family, and coworkers when you wear the glasses so they can decide how comfortable they feel around them. Regulators and advocates should push for strict biometric data privacy rules, including explicit consent from both wearers and bystanders before any faceprint is stored. Until there is clear regulation and oversight, users should assume that dormant facial recognition code could be activated with a future update.
