Biometric Data Policy and Notice

1. Purpose

Incode Technologies, Inc. and its Affiliates (“Company“) have adopted this Biometric Data Policy and Notice (this “Policy”) to govern the treatment of your Biometric Data, and is applicable to users residing in the United States of America (or non-US residents whose biometric data is collected in a US jurisdiction in which these protections attach under applicable law). Protecting the confidentiality and integrity of Biometric Data is a critical responsibility that must be taken seriously at all times. Compliance with this Policy is mandatory. This Policy exists to help you better understand how we collect and treat Biometric Data, in addition to the information provided to you in our Privacy Policy.

2. Scope

This Policy applies to all Company employees, agents, and representatives, including any contractor or third-party service provider to the Company (“Third-Party Service Provider“) who have access to Biometric Data on behalf of the Company. This Policy applies to all Biometric Data collected, maintained, transmitted, stored, retained, or otherwise used by the Company regardless of the media on which that information is stored and whether relating to customers/users of Incode Omni, Incode Workforce or IncodeID.

3. Definition

Affiliates” means any entity that directly or indirectly controls, is controlled by, or is under common control with Incode Technologies, Inc., where “control” means the ownership of, or the power to vote, at least fifty percent (50%) of the voting stock, shares or interests of such entity. “Biometric Data” means collectively all Biometric Identifiers and Biometric Information. “Biometric Identifiers” means:

  • Retina or iris scans.
  • Fingerprints.
  • Voiceprints.
  • Scans of hand or face geometry.

Biometric Identifiers do not include:

  • Writing samples and written signatures.
  • Photographs.
  • Human biological samples used for valid scientific testing or screening.
  • Demographic data.
  • Tattoo descriptions.
  • Physical descriptions, such as:
    • height
    • weight
    • hair color; or
    • eye color.
  • Information captured from a patient in a healthcare setting.
  • Information collected, used, or stored for healthcare treatment, payment, or operations under the Health Insurance Portability and Accountability Act (HIPAA).
  • Donated organs, tissues, or parts as defined by the Illinois Anatomical Gift Act or blood or serum stored in connection with organ transplants.
  • Biological materials regulated under the federal Genetic Information Privacy Act.

Biometric Information” means information, regardless of how it is captured, converted, stored, or shared, that is based on a Biometric Identifier. Biometric Data does not include information derived from items or procedures excluded under the definition of Biometric Identifiers.

4. Retention Schedule

Unless otherwise required by an order from a court of competent jurisdiction or applicable law, we will only retain biometric data until: (i) the initial purpose for collecting the Biometric Data has been satisfied; or (ii) three years following your last interaction with the Company, whichever occurs first, unless we are legally required to keep such data for a different period.

5. Biometric Data Collection

Company and its partners and providers collect, store, and use Biometric Data for purposes of identity verification and related services (as well as related training of models, if consented by the individual). Before collecting Biometric Data from any individual, the Company will obtain the individual’s written consent to the collection, as required by applicable law.

6. Biometric Data Security

Company shall use a reasonable standard of care to store, transmit and protect from disclosure any paper or electronic Biometric Data collected.

7. Biometric Data Disclosures

Subject to individual consent, the Company may disclose an individual’s Biometric Data to its third-party vendors and/or licensors in order to facilitate the provision of its services. The Company prohibits any further disclosure or re-disclosure of Biometric Data unless:

  • The individual or the individual’s legally authorized representative consents to the disclosure;
  • The disclosure is required by applicable law or regulation; or
  • The disclosure is required pursuant to a valid warrant or subpoena issued by a court of competent jurisdiction.

Company does not sell, lease, trade, or otherwise profit from Biometric Data. For any questions regarding our use of biometric data or other privacy inquiries, please submit a request to our privacy team at dataprotection@incode.com. Version 1. Last updated: June 9th, 2025

Sign up for our newsletter

Get expert insights into the evolving landscape of AI-powered identity
verification and fraud prevention.

Thank you! Your submission has been received!
Oops! Something went wrong while submitting the form.
By subscribing, you agree to our Privacy Policy
Incode Technologies, Inc.
101 Mission St, Suite 900,
San Francisco, CA 94105, USA
Tel: +1 (650) 446-3444
Platform
Explore Platform
Orchestration Dashboard
Workflow Builder
Ul Customization
Decisioning & Results
Fraud Analytics
Case Management
Platform Integrations
Our technology
Facial Recognition
Document Verification
Liveness Detection
OCR
Deepfake Detection
Network
Use cases
Identity Verification
Age Verification
KYC/AML Compliance
Know Your Business
(KYB)
Workforce
(KYE)
Candidate Verification
Agentic Identity
Non-Document
Verification
Industries
Financial services
Healthcare
Online gaming
Online gambling
E-commerce
& marketplaces
Public sector
Social Media
Resources
Blog
Press
Company
About
Careers
Contact us
Security
HIPAA
Privacy policy
Terms of use
Accessibility
SDK & API
Washington Consumer Health Data Privacy Report
Biometric Data Policy and Notice
Incode Technologies has been certified to be SOC 2 Type ii Compliant. Incode Technologies uses 256-bit TLS encryption
© Incode Technologies Inc. All rights reserved. Incode Trademark