Docs / Data retention
What we store, where, and for how long
Simple and explicit: no photos, no templates, no identity details. One-off records retain minimal metadata for 7 days.
Retention table
| Data element | Stored? | Where | Retention | Why |
|---|---|---|---|---|
| Face photos/images | No | N/A | N/A | Not retained by platform design. |
| Biometric templates | No | N/A | N/A | Not collected or stored. |
| Raw browser challenge media | No | Browser | Session-only | Used only to run check in-browser. |
| Encrypted verification signals | Yes | Server | Per policy | Needed to compute and validate outcomes. |
| Signed outcome payload | Yes | Server | Per policy | Enforcement and audit integrity. |
| One-off verification record | Yes | Server | 7 days | Reliability, support, and short-term audit trace. |
| Persistent verification record | Yes | Server | Expiring record | Recognize verified users without rerunning each time. |
| Webhook delivery logs | Yes | Server | Operational window | Retry reconciliation and incident analysis. |