Privacy Policy

Last updated: July 13, 2026

1. What we collect

2. Biometric data — explicit consent

Verification compares a live selfie against your uploaded photos using an automated face-comparison service (AWS Rekognition). This involves processing biometric identifiers. We only do this with your explicit consent, given during onboarding. Face-comparison results (a similarity score and rule flags) are stored; raw biometric templates are not retained by us after the comparison completes. You may withdraw consent at any time by deleting your account, which deletes your photos, selfies, and derived verification data.

3. How your data is used

4. Where your data lives

Data is stored with Supabase (database, authentication, and photo storage — photos live in a private bucket accessible only through short-lived signed links). Payments are processed by Stripe. Verification images are processed transiently by AWS Rekognition.

5. Retention and deletion

Your data is retained while your account exists. Deleting your account (Settings → Delete my account) immediately and permanently removes your photos, live selfies, verification records, profile, score, and matchup history. Aggregate statistics that cannot identify you may be retained.

6. Your rights

Depending on your jurisdiction (including under GDPR and CCPA), you have the right to access, correct, export, or delete your personal data, and to withdraw consent. Most of these are self-service in Settings; for anything else contact us at the address below.

7. Age

FaceELO is for adults 18+. We do not knowingly process data of anyone under 18. If we learn an account belongs to a minor, we delete the account and its data.

8. Contact

Data controller: FaceELO. Contact: casio.cdp.240r@gmail.com