Level3ID™

Privacy Policy

Your data. Your control. Our promise.

At Level3ID™, your privacy is engineered into everything we build. This policy explains how we protect your data across both the Level3ID™ verification platform and the Chrome Guard™ browser extension.

1. Privacy by Design

Our architecture follows a data-minimization-first principle — real-time verification, no persistent storage, and zero biometric profiling. We separate the cloud verification platform and the Chrome Guard™ extension to maintain clear privacy boundaries.

2. Level3ID™ Platform – No Biometric Storage

  • Instant Processing: Visual data is analyzed in real time and immediately discarded.
  • No Retention: Nothing is written to disk or stored post-verification.
  • No Profiling: We confirm human presence — not personal identity.

Verification happens in memory only, ensuring total biometric privacy.

3. Chrome Guard™ – Minimal, Encrypted Data

Chrome Guard™ strengthens protection on sensitive pages by securely storing limited, encrypted data:

  • Facial Image (Encrypted): Used for liveness and spoof detection only.
  • Name & Email: Used for authentication and service alerts.
  • Encryption: AES-256 at rest, TLS 1.3 in transit.

All data remains private and never sold or shared.

4. Anonymous Operational Data

  • Liveness Indicators: Blink/motion analysis for anti-spoofing.
  • Session Metadata: Browser type, timestamps, and success/failure logs — anonymized for performance tuning.

5. Security Controls

  • Zero-Trust Access: Strict least-privilege data handling.
  • Encryption Standards: AES-256 / TLS 1.3.
  • Audits: Regular external penetration testing.
  • Deletion on Demand: Permanent erasure within 72 hours upon user request.

6. User Communication & Security Response

We maintain full transparency in how we protect you:

  • Transparency: Chrome Guard™ accesses only camera input, name, and email.
  • Threat Model: Biometric data encrypted, sandboxed, and isolated.
  • Incident Response: Continuous monitoring, prompt disclosure, and remediation workflow.
  • Security Contact: security@level3id.com.

7. User Rights & Control

You may request access, correction, or deletion of stored information. Chrome Guard™ data deletion fully erases encrypted records within 72 hours.

8. SMS & Email Notifications

If you enable Chrome Guard™ alerts, you consent to receive low-frequency, transactional SMS or email notifications regarding service interruptions or security alerts. These are not marketing messages.

  • Message frequency: event-based only.
  • Message and data rates may apply.
  • Opt out any time by disabling notifications or uninstalling Chrome Guard™.
  • Carriers are not responsible for delayed or undelivered messages.
  • By opting in, you verify ownership of the provided contact and consent under the TCPA.

9. Policy Updates

We may update this policy as laws and technology evolve. Continued use of our services indicates acceptance of future updates.

Last Updated: