BIOMETRID, SA., NIPC 513 560 270, headquarters at Rua Paulo Gama 629, 4050-589 Porto, herein as “Biometrid”.
Biometrid may change this Policy at any time and without notice, effective upon the posting of the revised Policy. Your continued use of the website and store shall be considered your acceptance of the revised Policy.
COLLECTION AND USE OF PERSONAL INFORMATION
When we provide authentication and identification solutions to our clients, we are acting on their behalf as their service provider and processor.
Our clients, and not us, are the controllers of the data you submit when interacting with our Authentication and Identification Services.
In order to verify identity, Biometrid needs to collect information about our client’s users. The information collected is determined by the check and process that is being performed: (1) for online authentication, Biometrid requires an id/username and a picture or video of the user’s face. The information collected is used to verify that the person from the photo or video is the same as the one in the id/username; (2) to verify an ID document/Passport, we need to receive a photo of the document verified and a live photo of the person that is being verified. Biometrid will assess if the person from the live photo is the same as the one in the document; (3) for online 1:1 identity verification (face, liveness and id document/passport) will need to record a video conference between the client’s agent and user.
The case (1) explained above, it is done by storing an id/username of the user, and a generated ecrypted version of the biometric template from the image provided. We are using deep learning models that create a biometric template that cannot be reversed to the original image. The original image of the user is deleted after the biometric template is generated. After the first time use (the registration/enrollment process), every new authentication request, will require a new photo of the user, that will generate a new biometric template. The new biometric template is then compared with the original template to asses if it is a match. A match between the two templates means the user is the person it claims to be.
For the case (2) described above, our proprietary machine learning algorithm is verifying the autheticity of the ID document/Passport photographed. This is done by verifying the security elements present on the document (document size, presence of holograms, data corespondence between MRZ data and non-MRZ data, etc.). After the authenticity is established, the ownership is being verified. In order to verify ownership of the document, Biometrid is assesing if the person from the live photo is the same as the person in the document photographed. When both the autheticity and document ownership are confimed, the photos collected are deleted.
In the case (3) mentioned above, the user is invited in a videoconference call with our client’s agents. The call is being recorded and has the purpose of attesting the user’s identity and contentment.
We do not store any user photos.
If the user explicitly submits additional information, we may collect it at the request of our clients (name, email address etc.).
Biometrid limits its requests for information to what is required to ensure accurate service. When you install our app, to register you face and voice biometrics for strong identification, validation and authentication, your personal information will be encrypted and minimised by default and shared via secure (encrypted) means with third-party engines that helps our technology function. This allows us to process and fulfil your data safely. It also helps us in maintaining your account. Examples of user information that may be collected may include, but are not limited to, your name, address, e-mail address, data through the user’s IP address and face and voice biometrics. Polygon app was built for research and development of biometric solutions and its use requires the users consent, if you don’t accept the terms and conditions you should abstain off downloading our app.
Biometrid will share your personal information internally with those staff members who need it to carry out the research program. We will not disclose your personal information to any third party without your written consent unless required to do so by law.
Biometrid performs services on behalf of our clients for different reasons. The reasons are set by our clients, and we depend on them to inform us when they do not need to store the information we collected on their behalf. We delete the information we have collected about our users, when our clients instructs us to do so, thorough an agreement or an ad-hoc request.
If a user would like to have his information deleted, he is instructed to make a request directly to the client that carried out the related check. In the case the user registered directly with Biometrid, the request is made then with us. For more instructions about how to do this , please see below under “Your Rights”.
In cases we have a legitimate legal reason, we may store information for longer than described above – for example, where we are under a binding legal order not to destroy information.
DATA SUBJECT’S RIGHTS
The Data Subject has the right to rectify inaccurate personal data concerning him. Depending on the purpose of the processing, the Data Subject is entitled to supplement the data by means of an additional declaration. The Holder has the right to the deletion of his personal data, when one of the following reasons applies:
- Personal data is no longer necessary for the purpose that motivated its collection or processing;
- The Holder withdraws the consent;
- The Holder opposes the treatment;
- Personal data must be deleted to fulfill a legal obligation;
- Personal data were collected from minors without parental consent.
The Data Subject has the right to obtain from the controller the limitation of treatment if one of the following applies:
- Contest the accuracy of personal data;
- The processing is unlawful and the Data Subject opposes the deletion of personal data and requests, in return, the limitation of its use;
- If personal data are not required for processing, but such data are required by the holder for the purpose of declaring, exercising or defending a right in legal proceedings;
- If the data subject has objected to the processing and even finds that the data controller’s legitimate reasons take precedence over the data subject’s.
- The Data Holder has the right to receive his data in a structured, commonly used and readable format. In exercising its right to data portability, the Data Subject has the right for personal data to be transmitted directly between the controllers, where technically possible.
- The purpose is to empower the Data Subject and give him greater control over the personal data concerning him.
- The Data Subject has the right to oppose the processing of personal data at any time for reasons relating to his or her particular situation.
- When personal data are processed for direct marketing purposes, the Data Subject has the right to oppose the processing of the data at any time.
- The Data Subject may exercise his right of objection by automated means.
For more information regarding the GDPR, please contact our Data Protection Officer through the email@example.com e-mail.
CONTACT & COMMUNICATION
Users contacting Biometrid do so at their own discretion and provide any such personal details requested at their own risk. Your personal information is kept private and stored securely.
Biometrid and its employees may use any information submitted to provide you with further information about the products / services they offer or to assist you in answering any questions or queries you may have. This includes using your details to subscribe you to any email newsletter program the website operates. Your personal information is not passed on to any third parties.
Biometrid operates an email newsletter program, used to inform subscribers about products and services supplied by this website. Users can subscribe through an online automated process should they wish to do so but do so at their own discretion.
Email marketing campaigns sent by Biometrid may contain tracking facilities within the actual email. Subscriber activity is tracked and stored in a database for future analysis and evaluation. Such tracked activity may include; the opening of emails, forwarding of emails, the clicking of links within the email content, times, dates and frequency of activity. This information is used to refine future email campaigns and supply the user with more relevant content based around their activity.
All subscribers are given the opportunity to unsubscribe at any time through an automated system. If an automated un-subscription system is unavailable clear instructions on how to unsubscribe will by detailed instead.
The owners of this website cannot guarantee or verify the contents of any externally linked website despite their best efforts. Users should therefore note they click on external links at their own risk and this website and its owners cannot be held liable for any damages or implications caused by visiting any external links mentioned.
SOCIAL MEDIA PLATFORM
Communication, engagement and actions taken through external social media platforms that Biometrid participate on are custom to the terms and conditions as well as the privacy policies held with each social media platform respectively.
Biometrid will never ever ask for personal or sensitive information through social media platforms and encourage users wishing to discuss sensitive details to contact them through communication channels such as email.
Biometrid may use social sharing buttons on this website which help share web content directly from web pages to the social media platform in question. Users are advised before using such social sharing buttons that they do so at their own discretion and note that the social media platform may track and save your request to share a web page respectively through your social media platform account.
DISCLAIMER AND COPYRIGHT
The materials on Biometrid’s Website are provided “as is”. Biometrid makes no warranties, expressed or implied, and hereby disclaims and negates all other warranties, including without limitation, implied warranties or conditions of merchantability, fitness for a particular purpose, or non-infringement of intellectual property or other violation of rights. Further, Biometrid does not warrant or make any representations concerning the accuracy, likely results, or reliability of the use of the materials on its Internet web site or otherwise relating to such materials or on any sites linked to this site.
The materials contained in this web site are protected by applicable copyright and trade mark law.
In no event shall Biometrid or its suppliers be liable for any damages (including, without limitation, damages for loss of data or profit, or due to business interruption,) arising out of the use or inability to use the materials on Biometrid’s Website, even if Biometrid authorised representative has been notified orally or in writing of the possibility of such damage. Because some jurisdictions do not allow limitations on implied warranties, or limitations of liability for consequential or incidental damages, these limitations may not apply to you.
REVISIONS AND ERRATA
Biometrid has not reviewed all of the sites linked to its Website and is not responsible for the contents of any such linked site. The inclusion of any link does not imply endorsement by Lapa Studio of the site. Use of any such linked web site is at the user’s own risk.
Biometrid has not reviewed all of the sites linked to its Website and is not responsible for the contents of any such linked site. The inclusion of any link does not imply endorsement by Biometrid off the site. Use of any such linked web site is at the user’s own risk.
Any claim relating to Biometrid Website shall be governed by Portuguese law without regard to its conflict of law provisions.