Privacy Policy
1. Overview
AgeOnce is committed to a "Zero-Image" privacy policy. We minimize data collection to the absolute minimum required to verify your age.
2. Information We Collect
Identity Data: When you scan your ID, we extract the Date of Birth to confirm eligibility.
Biometric Data: We process facial geometry to verify that the ID holder matches the person currently using the device. (See "Biometric Information Policy" for details).
Device Data: IP address, browser type, and device integrity signals (to prevent fraud).
3. How We Process Data (The "Zero-Image" Architecture)
Transient Processing: Images of your ID and face are processed in temporary memory (RAM).
Vectorization: We convert your facial features into an encrypted mathematical representation (vector/hash).
Immediate Deletion: Once the vector is created and age is verified, the original photos are permanently deleted. We do not store raw images of your face or ID on our servers.
4. Data Retention
Biometric Vectors: Stored in an encrypted format to allow for future instant re-verification (Single Sign-On). You may delete this data at any time via your AgeOnce settings.
Inactive Accounts: If you do not use AgeOnce for 3 years, your data is automatically deleted.
5. Your Rights (CCPA/GDPR)
Depending on your location, you have the right to:
- Access: Know what data we hold about you.
- Delete: Request deletion of your biometric vector and account.
- Opt-Out: Withdraw consent for biometric processing (this will disable the Service).
To exercise these rights, contact us at: hi@ageonce.com.