Biometric Data Notice
Effective date: April 11, 2026 · Last updated: April 11, 2026
Reverse Face(“we,” “us,” or “our”) provides this Biometric Data Notice to inform you about how we collect, use, store, and dispose of biometric identifiers and biometric information (collectively, “Biometric Data”) in connection with our AI-powered reverse face search services (the “Services”). This notice is provided in compliance with the Illinois Biometric Information Privacy Act (BIPA, 740 ILCS 14) and other applicable biometric privacy laws.
1. What Biometric Data We Collect
When you upload a photograph to our Services, the image may be processed to extract:
- Facial geometry: Mathematical representations (embeddings / faceprints) derived from the spatial relationships between facial features (e.g. distance between eyes, jawline contour, nose shape).
- Facial photographs: The uploaded image itself, to the extent it qualifies as a biometric identifier under applicable law.
2. Purpose of Collection
We collect and process Biometric Data solely for the following purposes:
- Performing the reverse face search you requested — matching the uploaded photo against publicly available images across the web.
- Delivering search results and generating downloadable PDF reports.
- Improving the accuracy and performance of our search algorithms.
3. Consent
By uploading a photograph and initiating a face search, you provide your informed, written consent (via electronic acceptance) to the collection, use, and storage of Biometric Data as described in this notice. If you are uploading a photograph of another person, you represent and warrant that you have obtained that person’s informed written consent before proceeding.
4. Third-Party Processing
Uploaded images are transmitted via encrypted channels to our facial recognition provider, FaceCheck.id, for processing. FaceCheck.id acts as a sub-processor under our instructions. We require all sub-processors to maintain security standards at least as protective as our own and to delete Biometric Data in accordance with the retention schedule below.
5. Retention & Destruction Schedule
| Data Type | Retention Period | Destruction Method |
|---|---|---|
| Uploaded photograph | Deleted within 24 hours of search completion | Secure file deletion from server storage |
| Facial geometry / embeddings | Deleted within 24 hours of search completion | Purged from processing memory; no persistent storage |
| Search result thumbnails | 90 days or Subscription duration (whichever is longer) | Automated scheduled purge |
If we become aware that your Biometric Data is no longer needed for the original purpose, or three (3) years after your last interaction with the Services — whichever occurs first — we will permanently destroy your Biometric Data in accordance with BIPA requirements.
6. Disclosure
We do not sell, lease, or trade Biometric Data. We do not disclose Biometric Data to third parties except:
- To our sub-processor (FaceCheck.id) as described in Section 4.
- When required by law, regulation, or valid legal process (see our Law Enforcement Guidelines).
- With your explicit written consent.
7. Security
We protect Biometric Data using industry-standard measures including TLS encryption in transit, encryption at rest, access controls limited to authorized personnel, and regular security audits. Our safeguards meet or exceed the standard used to protect other confidential and sensitive information.
8. Your Rights
You have the right to request deletion of your Biometric Data at any time. To exercise this right, email privacy@reverseface.com or visit our contact page. We will process deletion requests within 30 days.
9. Changes to This Notice
We may update this Biometric Data Notice from time to time. Material changes will be communicated by email or prominent notice on the Site. Continued use of the Services after changes take effect constitutes acceptance of the revised notice.
10. Contact
For questions about this notice or to exercise your biometric data rights, contact us at privacy@reverseface.com or visit our contact page.