Biometric Information Privacy Policy
1. Scope and Consent
AgeOnce uses facial recognition technology to verify your identity. By clicking "I Agree" or "Verify with Face," you explicitly consent to the collection, processing, and storage of your Biometric Information (facial geometry) for the purposes of age verification and future re-authentication.
2. What is Biometric Information?
For the purpose of this policy, "Biometric Information" includes scans of facial geometry and the mathematical vectors derived from such scans.
3. Purpose of Collection
We use your Biometric Information solely for:
- Verifying that the person presenting the ID is the owner of the ID.
- Detecting "liveness" to prevent fraud (spoofing).
- Enabling fast re-verification on Partner Sites without re-uploading documents.
4. Retention Schedule and Destruction Guidelines
Raw Images (Photos): Are considered "Transient Data." They are processed in real-time and permanently destroyed immediately after the mathematical vector is generated. They are never saved to our database.
Biometric Vectors (Templates): Are stored in an encrypted database. We will permanently destroy your Biometric Vector when the first of the following occurs:
- You request deletion via your account settings.
- The purpose for collecting the data has been satisfied (e.g., you close your account).
- Three (3) years have passed since your last interaction with AgeOnce (Compliance with Illinois BIPA).
5. Storage and Security
We use industry-standard encryption (AES-256) to protect your Biometric Information both in transit and at rest. We do not sell, lease, trade, or otherwise profit from your Biometric Information.