Are biometric attendance systems legal in Myanmar?
Yes. Biometric attendance systems — fingerprint, facial recognition, or similar — are legal in Myanmar provided employees are informed, the data is used solely for attendance, retention is bounded, and the system is accessible for inspection by the township labour office. There is no dedicated data-protection statute yet, so contractual notice and minimum-data principles are the operational standard.
What Myanmar law says
Biometric attendance systems are legal in Myanmar. The Factories Act 1951 and Shops & Establishments Act require an attendance register but do not prescribe its medium — paper, swipe-card, fingerprint, or facial-recognition systems all qualify so long as the resulting record captures daily start, break, and end times per employee.
Myanmar does not yet have a dedicated personal-data-protection statute. Operational best practice draws on three principles: employee notice (in the employment agreement or HR policy), purpose limitation (attendance use only, no secondary repurposing), and retention discipline (delete biometric templates when the retention period lapses). The system must also remain inspection-accessible — labour-office inspectors must be able to pull readable attendance reports.
Implementation requirements
| Element | Standard |
|---|---|
| Employee notice | Written, in employment agreement or HR policy |
| Purpose | Attendance only — no marketing, no surveillance |
| Data captured | Biometric template + timestamp; not raw image where avoidable |
| Retention of biometric template | Active employment; delete on exit |
| Retention of attendance log | ≥ 7 years |
| Access | HR / payroll only; access log maintained |
| Inspection accessibility | Readable export available to township labour office |
Edge cases
- Employee refusal — provide an alternative attendance method (manual sign-in or PIN) where possible; do not coerce.
- Vendor data sharing — most biometric vendors store templates locally on the device; cloud-hosted systems should have data-processing terms with the vendor.
- Cross-border transfer — group HQ access from another country requires contractual safeguards; minimise where possible.
- Mobile attendance apps — geo-fenced clock-in apps for WFH staff are acceptable; same notice and retention principles apply.
- Health-screening overlays — temperature checks at biometric kiosk are common since 2020 but should be deleted promptly post-screening.
Records and inspections
The biometric system's attendance log is the legal record. Retention ≥ 7 years for the attendance log; biometric templates can be retained shorter (active employment). The township labour office demands attendance reports during inspection; ensure the system can export to PDF or paper. Vendor data-processing agreements should be on file for cloud-hosted systems.
Employer takeaway
Biometric attendance is legal in Myanmar. Inform employees in writing, limit the data to attendance use, retain biometric templates only during active employment, and retain the resulting attendance log for 7 years. Provide a non-biometric fallback for employees who object. Ensure the system can produce a readable export for township labour office inspections.
Common mistakes
- Deploying a biometric system without notice in the employment agreement or a policy circular.
- Retaining biometric templates indefinitely, including for ex-employees.
- Using biometric data for purposes beyond attendance (e.g., disciplinary surveillance) without consent.
- Relying solely on the cloud vendor's UI for inspection access; ensure local export is possible.
Related reading: hours records to keep, WFH legal recognition, and is flexi-time legal.
- Factories Act 1951 — Attendance register requirements
- Shops and Establishments Act — Records and inspection
- OSH Law 2019 — Workplace systems and employee notice
Related questions
Stop calculating PIT manually.
QHRM's payroll engine applies the latest Union Tax Law brackets, basic relief, and dependant allowances automatically.