Authenticate
Solutions Arrow_down
Products Arrow_down
Pricing
Resources Arrow_down
Get Started
Menu

Biometric Information Retention and Destruction Policy



Authenticating.com maintains written policies for the retention and destruction of biometric identifiers and biometric information in compliance with applicable law, including the Illinois Biometric Information Privacy Act (BIPA).

Retention Schedule

We permanently destroy biometric identifiers and biometric information when the earlier of the following occurs:

  1. The initial purpose for collecting the biometric data has been satisfied; OR
  2. Three (3) years have elapsed since your last interaction with our Services

Specific Retention Periods:

One-Time Identity Verification:

  • Facial geometry data: Destroyed within 24 hours of verification completion
  • Source photographs: Destroyed within 30 days of verification completion

Continuous Monitoring Services:

  • Biometric identifiers: Destroyed within 30 days of service termination
  • Source photographs: Destroyed within 90 days of service termination
  • Maximum retention: 3 years from last interaction

Background Screening:

  • Biometric identifiers: Destroyed within 7 days of report completion
  • Source photographs: Destroyed within 60 days of report completion

Fraud Investigation:

  • May be retained for investigation duration plus 180 days
  • Maximum retention: 3 years from last interaction (unless legally required)

Destruction Methods

We permanently destroy biometric data using secure methods including:

  • Cryptographic erasure and secure deletion (for electronic data)
  • Physical destruction of storage media
  • Cross-cut shredding (for physical documents)

All destruction methods ensure data cannot be reconstructed, retrieved, or accessed. We destroy all copies, including backups.

Legal Exceptions

We may retain biometric data beyond standard periods only when:

  • Required by valid warrant, subpoena, or court order
  • Required by applicable law
  • Subject to pending or reasonably anticipated litigation

Your Rights

You may request early deletion of your biometric data by contacting our Data Protection Officer at privacy@authenticating.com. We will respond within 30 days and destroy your data within 15 days of verification unless retention is legally required.

Full Policy

You may request early deletion of your biometric data by contacting our Data Protection Officer at info@authenticating.com. We will respond within 30 days and destroy your data within 15 days of verification unless retention is legally required.