Privacy Policy

We collect information you provide directly (name, email, company), usage data (pages visited, features used), and biometric data in the form of encrypted mathematical vectors — never raw images.

Biometric processing: When an employee enrolls, the face-recognition microservice converts the captured image into a numerical vector (face embedding). The source image is discarded immediately. Only the vector — which cannot be used to reconstruct a face — is stored in our database.

We use collected data to provide and improve the IntelliFace service, authenticate users, generate attendance reports, send service-related communications, and comply with legal obligations.

We do not sell your data to third parties. We do not use your biometric data for any purpose other than identity verification within your organization's IntelliFace account.

All data is stored on MongoDB Atlas infrastructure in your selected region. Data is encrypted at rest (AES-256) and in transit (TLS 1.3). Biometric face embeddings are additionally encrypted at the application layer before storage.

Production database access is restricted to the engineering team via MFA-protected credentials. All access is logged and audited.

Account data is retained for the duration of your subscription plus 90 days. Biometric embeddings are deleted immediately upon employee offboarding or account termination.

Attendance records are retained for 7 years by default to meet common payroll compliance requirements. This period can be customized on Enterprise plans.

Depending on your jurisdiction, you may have the right to access, correct, delete, or port your personal data. To exercise these rights, contact us at privacy@intelliface.io. We will respond within 30 days.

For individual employee biometric deletion requests, administrators can initiate deletion directly from the admin dashboard.

We may update this Privacy Policy from time to time. We will notify you of material changes via email and by posting a notice on our website. Continued use of the service after the effective date constitutes acceptance of the updated policy.

For privacy questions, contact our Data Protection Officer at privacy@intelliface.io or write to: IntelliFace Ltd., Data Protection Officer.