Privacy Policy

Last Updated: June 1, 2025

Introduction

CheckMet ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our facial recognition attendance management system, website, and related services (collectively, the "Services").

We take the collection and processing of biometric data very seriously. Our Privacy Policy is designed to comply with data protection regulations, including the General Data Protection Regulation (GDPR) and various biometric privacy laws.

Please read this Privacy Policy carefully. By using our Services, you consent to the data practices described in this policy. If you do not agree with the terms of this Privacy Policy, please do not access or use our Services.

Table of Contents

Information We Collect

Personal Information

We may collect personal information that you voluntarily provide to us when you register for our Services, express interest in obtaining information about us or our products, or otherwise contact us. The personal information we collect may include:

  • Name, email address, mailing address, and phone number
  • Job title and employer information
  • Account login credentials
  • Employee ID or other identifiers used within your organization
  • Attendance records, including check-in and check-out times

Biometric Data

When users enroll in the CheckMet facial recognition system, we collect biometric data in the form of facial scans. This data is immediately processed to create encrypted mathematical templates that are used for subsequent identification. The original facial images are not retained after template creation.

Automatically Collected Information

When you use our Services, we may automatically collect certain information, including:

  • Device information such as your mobile device ID, IP address, and browser type
  • Log data, including the pages you visit and the time spent on those pages
  • Location data (with your permission) for certain features of our Services
  • Usage patterns within our web and mobile applications

Cookies and Similar Technologies

We use cookies and similar tracking technologies to track the activity on our Services and hold certain information. Cookies are files with a small amount of data which may include an anonymous unique identifier. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent.

How We Use Your Information

We use the information we collect for various purposes, including:

  • Providing, operating, and maintaining our Services
  • Facilitating employee attendance tracking and verification
  • Improving, personalizing, and expanding our Services
  • Understanding and analyzing how you use our Services
  • Developing new products, services, features, and functionality
  • Communicating with you about updates, security alerts, and support
  • Providing customer support and responding to inquiries
  • Compliance with legal obligations
  • Prevention of fraud and security incidents

Legal Bases for Processing

We process your personal information under the following legal bases:

  • Performance of a Contract: Processing necessary for the performance of a contract with you or your employer
  • Legitimate Interests: Processing necessary for our legitimate interests, provided those interests are not overridden by your rights and interests
  • Consent: Processing based on your consent, particularly for biometric data
  • Legal Obligations: Processing necessary to comply with our legal obligations

Sharing Your Information

We may share your information in the following situations:

With Your Employer

As the controller of your personal data, your employer has access to your attendance records and related information processed through our system.

Service Providers

We may share your information with third-party vendors, service providers, and contractors who perform services for us and need access to such information to do that work.

Business Transfers

If we are involved in a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred as part of that transaction.

Legal Requirements

We may disclose your information where required to do so by law or in response to valid requests by public authorities.

With Your Consent

We may share your information with other parties for other reasons if you have given us your consent to do so.

Data Transfers

Your information may be transferred to—and maintained on—computers located outside of your state, province, country, or other governmental jurisdiction. If you are located outside the United States and choose to provide information to us, please note that we transfer the data to the United States and process it there.

Special Provisions for Biometric Data

Given the sensitive nature of biometric data, we implement special provisions for its processing:

Explicit Consent

We require explicit consent from individuals before collecting and processing their biometric data. This consent is typically obtained by your employer during the enrollment process.

No Facial Image Storage

We do not store actual facial images. During enrollment, facial scans are immediately converted into encrypted mathematical templates that cannot be reverse-engineered into an actual image.

Limited Use

Biometric templates are used solely for the purpose of attendance verification and are not used for any other purpose without additional consent.

Enhanced Security

Biometric templates are protected with industry-leading encryption and security measures to prevent unauthorized access or disclosure.

Alternative Methods

We provide alternative non-biometric methods for attendance tracking for individuals who do not consent to facial recognition.

Data Security

We have implemented appropriate technical and organizational security measures designed to protect the security of any personal information we process. However, despite our safeguards and efforts to secure your information, no electronic transmission over the Internet or information storage technology can be guaranteed to be 100% secure.

Our security measures include:

  • Encryption of data in transit and at rest
  • Regular security assessments and penetration testing
  • Access controls and authentication mechanisms
  • Employee training on data protection
  • Incident response procedures

Your Data Protection Rights

Depending on your location and applicable laws, you may have the following rights regarding your personal information:

Right to Access

You have the right to request information about the personal data we hold about you and to receive a copy of that personal data.

Right to Rectification

You have the right to request that we correct any information you believe is inaccurate or complete information you believe is incomplete.

Right to Erasure

You have the right to request that we erase your personal data, under certain conditions.

Right to Restrict Processing

You have the right to request that we restrict the processing of your personal data, under certain conditions.

Right to Data Portability

You have the right to request that we transfer the data we have collected to another organization, or directly to you, under certain conditions.

Right to Object

You have the right to object to our processing of your personal data, under certain conditions.

Right to Withdraw Consent

You have the right to withdraw your consent at any time if we rely on consent to process your personal information.

To exercise any of these rights, please contact your employer (the data controller) or reach out to us directly using the contact information provided at the end of this Privacy Policy.

Data Retention

We will retain your personal information only for as long as is necessary for the purposes set out in this Privacy Policy. The specific retention period depends on the type of data:

  • Account Information: Retained for the duration of your or your employer's use of our Services, plus a reasonable period thereafter for legal or business purposes.
  • Biometric Templates: Retained only for the duration of your employment or until your employer terminates the service, unless otherwise specified in your employer's data retention policy.
  • Attendance Records: Typically retained in accordance with your employer's retention policies and applicable employment laws.

We will also retain and use your personal information to the extent necessary to comply with our legal obligations, resolve disputes, and enforce our legal agreements and policies.

Children's Privacy

Our Services are not directed to individuals under the age of 16. We do not knowingly collect personal information from children under 16. If you are a parent or guardian and you are aware that your child has provided us with personal information, please contact us so that we can take appropriate action.

Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last Updated" date at the top of this page. You are advised to review this Privacy Policy periodically for any changes.

Changes to this Privacy Policy are effective when they are posted on this page. If we make material changes to this Privacy Policy, we will notify you through a notice on our website or by email.

Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

CheckMet Data Protection Officer
Email: privacy@checkmet.com
Phone: +1 (800) 555-1234
Address: 100 Technology Drive, Suite 300, San Francisco, CA 94103, USA