Biometric Data Policy

TheDress.ai Last Updated: March 2026

This Biometric Data Policy is provided in compliance with the Illinois Biometric Information Privacy Act (740 ILCS 14), commonly known as BIPA, and any other applicable biometric data laws. This policy describes how TheDress.ai ("we," "us," or "our") collects, uses, stores, and destroys biometric data.

1. Biometric Data We Collect

In the course of providing our AI-powered wedding attire visualization service, we collect the following biometric data:

• Facial geometry extracted from selfie photographs that you upload to the service.

This facial geometry data is derived from your uploaded photos by the Google Gemini AI model as part of the image generation process. We do not independently extract, create, or store biometric identifiers or biometric templates.

2. Purpose of Collection

Biometric data is collected and processed solely for the following purpose:

• AI-powered wedding dress and suit visualization -- generating images that show how you might look in various wedding attire options.

Your biometric data is never used for identification, surveillance, tracking, profiling, or any purpose other than the service described above.

3. How Biometric Data Is Collected and Processed

The collection and processing workflow is as follows:

1. Upload: You voluntarily upload a selfie photograph through our application.
2. Transmission: Your photograph is securely transmitted to the Google Gemini API (operated by Google LLC) via encrypted HTTPS connection.
3. Processing: Google Gemini AI analyzes the facial geometry in your photograph and generates a new image depicting you in the selected wedding attire.
4. Result: The generated image is returned to our service and made available to you.
5. Deletion: Your original uploaded photograph is permanently deleted within the retention period described in Section 5.

At no point does TheDress.ai independently extract, store, or maintain biometric templates, facial embeddings, faceprints, or any other persistent biometric identifiers.

4. Storage and Retention

TheDress.ai does not store biometric templates or facial embeddings. All biometric processing is performed by Google Gemini during the image generation request. We retain only the uploaded photographs and generated images for the periods stated above.

All stored data is encrypted at rest and in transit.

5. Destruction Schedule

We adhere to the following destruction schedule for all biometric data and associated materials:

• Uploaded selfie photographs: Automatically and permanently deleted 30 days after upload.
• AI-generated images: Automatically and permanently deleted 30 days after creation.
• Account deletion: Upon account deletion, all uploaded photographs, generated images, and associated data are permanently destroyed within 30 days of the deletion request.

Once destroyed, data cannot be recovered. Destruction is carried out through secure deletion methods that render the data unrecoverable.

6. No Sale or Trade of Biometric Data

TheDress.ai will NEVER:

• Sell biometric data.
• Lease biometric data.
• Trade biometric data.
• Otherwise profit from biometric data.
• Use biometric data for any purpose other than providing the wedding attire visualization service described in this policy.

This commitment applies regardless of the circumstances, including in the event of a corporate transaction such as a merger or acquisition.

7. Third-Party Disclosure

Your uploaded photographs containing biometric data are shared with the following third party strictly for the purpose of providing the service:

Google LLC (Gemini API)

• Purpose: AI-powered image generation (analyzing facial geometry and producing wedding attire visualization images).
• Data shared: Uploaded selfie photographs.
• Governing terms: Google Cloud Data Processing Terms and Google's AI/ML Privacy practices.
• Google Privacy Policy: https://policies.google.com/privacy
• Google Cloud Terms: https://cloud.google.com/terms/data-processing-addendum

No other third parties receive your biometric data. We do not disclose biometric data to any other entity unless required by a valid legal process (e.g., court order, subpoena).

8. Consent

By uploading a selfie photograph to TheDress.ai, you provide your informed, written consent to the collection, use, processing, and third-party disclosure of your biometric data as described in this policy.

This consent satisfies the written release requirement under the Illinois Biometric Information Privacy Act (740 ILCS 14/15(b)).

Before your first selfie upload, the application will present this Biometric Data Policy and require your explicit acknowledgment and consent. You may not use the selfie-based visualization feature without providing this consent.

You may withdraw your consent at any time (see Section 9).

9. Your Rights

You have the following rights regarding your biometric data:

• Right to Access: You may request a copy of any biometric data we hold about you by contacting us at the address below.
• Right to Deletion: You may request the immediate deletion of your uploaded photographs and generated images at any time. We will process deletion requests within 30 days.
• Right to Withdraw Consent: You may withdraw your consent to the collection and processing of biometric data at any time. Upon withdrawal, we will delete all your biometric data and you will no longer be able to use the selfie-based visualization feature.
• Right to Information: You may request information about our biometric data practices, retention schedules, and third-party disclosures.

To exercise any of these rights, contact us using the information in Section 10.

10. Contact

If you have questions, concerns, or requests related to this Biometric Data Policy or your biometric data, please contact us:

• Email: [CONTACT_EMAIL_PLACEHOLDER]
• Mailing Address: [COMPANY_ADDRESS_PLACEHOLDER]
• Company: [COMPANY_LEGAL_NAME_PLACEHOLDER]
• Data Protection Inquiries: [DPO_EMAIL_PLACEHOLDER]

We will respond to all inquiries within 30 days.

Copyright [COMPANY_LEGAL_NAME_PLACEHOLDER]. All rights reserved.