Privacy Policy: Oz Demo Application and Web Demo

Last Updated: May 23rd, 2025

1. INTRODUCTION

We, OZ FORENSICS SOFTWARE TRADING LLC, (hereinafter referred to as “Owner”, “we”, “us”, and “our”) – the developer of applications and services for facial biometric authentication and/or liveness check. Not only convenience and opportunities provided by our services, but also the right of each person to private life and protection of their personal data are equally important for us. In our everyday practice the Company does everything to prevent illegal use of personal data, as well as strives towards the protection of privacy of all parties.

The objective of this Privacy Policy is to inform you – the user of our Demo App and Web Demo tools (hereinafter jointly – Demo Tools) – on the purposes, scope and methods of protection, periods of processing of personal data and your rights within the framework of our personal data processing procedures.

For details about the information we collect on our websites, including how we use cookies, please visit our Website Privacy Policy.

2. BASIC DEFINITIONS

This Privacy Policy uses the following basic definitions:

Policy – the present Privacy Policy

End User or User – a natural person who is using or interfacing with the Demo App or Web Demo.

Demo App – an application provided by Oz Forensics that can be downloaded onto your device through app stores. This application has the specific purpose of testing our facial biometrics comparison (BIOMETRY) and liveness check (LIVENESS) functionalities services, which are provided to our customers.

Web Demo – a functionality available in Oz Forensics website (here) for the specific purpose of testing our liveness detection web SDK, which is provided to our customers.

Demo Tools – for the purposes of this policy: Demo App and Web Demo.

Customer – the legal entity that purchases the services from the Company.

Personal data – any information that the Demo App or Web Demo may collect capable of, directly or indirectly, identifying a person.

Data subject – natural person, who either directly, or indirectly is identified or can be identified by means of personal data.

Data processing – any operation performed on personal data by using automated equipment or without such equipment, for instance, collection, recording, organization, structuring, storage, adaptation or alteration, retrieval, consultation, use, disclosure by transmission, dissemination or otherwise making available, alignment or combination, restriction, erasure or destruction, etc.

Logs – records that may include details about user actions, system performance, and security events within an application

Third party – a person that is not a representative of the Company, its employee, subsidiary, representative office, associated company and (or) a partner, which is bound with the Company by contractual liabilities regarding non-disclosure of personal data, as well as persons that are not identified by the respective personal data.

User device – tablet, smartphone or any other device operated by the end user to use the Demo App or Web Demo.

Media – in context of this policy, media is any file sent to the Company for the purpose of offering the functionalities mentioned in this policy (Demo App and Web Demo).

Telemetry data – information about the end-user device (IP address, browser used, etc).

Metadata – additional information collected along with the media, when applicable. It contains IP address, device ID, camera information, browser version, iOS/Android version, etc.

SDK (Software Development Kit) – a set of tools and programs used by developers to build applications for a specific platform or system.

Service – Biometry and Liveness detection softwares with each detailed scope and features available here, including, individually and collectively, the applicable software, Software Development Kits (SDK), updates, API, Documentation, and all associated services provided by the Company to its Customers.

3. TYPES OF DATA COLLECTED

The Company receives personal data in the following ways:

Facial Biometric Comparison (“Biometry”). Biometry is a technology that analyzes facial images using a proprietary biometrics algorithm. This process involves:
- Extracting numerical biometric data from the images using our biometrics algorithm.
- Comparing this data to assess the probability of a match between two or more faces.

In essence, Biometry, powered by our biometrics algorithm, enables the comparison of multiple media files (images, videos, and scanned documents, including photos) to verify if they depict the same individual. The analysis requires a minimum of two media files as input.

Liveness check. Our Liveness solution confirms the authenticity and real-time capture of a User's image in media, protecting you and our customers against fraud.

In addition, we may also collect telemetry from Your device, metadata from the media You send to us, as well generate logs regarding Your interactions with our Demo Tools.

In this Privacy policy, all such information mentioned above is referred to as “Data” or “Personal Data”.

Note: You are responsible for any third-party Personal Data obtained, published or shared through our Demo Tools and confirm that they have the third party’s consent to provide the Data or Personal Data to the Owner.

3. USE SCENARIOS AND HOW THE OWNER COLLECTS, STORES AND PROCESSES YOUR PERSONAL DATA

The Personal Data is collected to demonstrate the facial recognition capabilities in the Oz Forensics Demo Tools. Processing Your Personal Data is a necessary part of the service the Owner provides to You in these demonstrations.

In the context of Biometry and Liveness Applications and services provided by us through Demo App and Web Demo, the Company operates as a Controller of personal data, backed by the legal basis of Consent. That is, when using our Demo Tools you consent with the processing of your personal data as described below, where you can find details regarding our Demo Tools scenarios:

4.1. If you are using Demo App

Demo App provides testing for Biometry and Liveness Check.

On device scenario: When the demo app is downloaded for testing, all data processing occurs locally on your device. With the exception of Telemetry data, no information is transmitted to our servers in this scenario.
Server-based scenario: When you request demo access to the server-based scenario in the Demo App, we collect media and metadata in addition to telemetry data.

See details below.

4.1.1. On device scenario

This scenario is only available for Demo App. By default, when You are using the Demo App, the Owner does not collect, transfer, process or by any other means interact with any of your Personal Data, except for Telemetry data, which is sent to Oz Forensics servers for the purposes of product/service improvement or development, analytics and service provision, always related to anti-fraud technologies.

All other Personal Data you are uploading to the Demo App is processed exclusively on Your device. The Demo Application does not transfer any other Personal Data to Oz Forensics servers or to third-party servers.

4.1.1.1. Place of storage and processing

The Personal Data is processed on Your own device and is not transferred to the Owner, except for Telemetry data, as mentioned above, which is processed in Singapore and in the United States of America. For further information, please contact the Owner.

4.1.1.2. Methods of processing

Except for Telemetry data, the Owner does not process any of Your Personal Data. The data processing is carried out using your own device. Personal Data is not transferred to anyone (including the Owner) and is stored solely in your device.

4.1.1.3. Retention time

In your device, the Personal Data is kept only for the duration of the demo session and it is not stored or transferred outside of this Demo Application and the device. Telemetry data is stored in the Owner's databases until the purposes described in this Privacy Policy are achieved.

4.1.2. Server-based scenario

When you are using the Demo App, by default you will not have access to server-based scenario, which means that your Personal Data will be processed on Your device only, as described here above in “On device scenario” section.

However, You may request a demo access to the server-based solution by filling out an application form on our website.

In this case, You will provide the Owner with your personal data (such as name and email) so the Owner can contact You and provide access to the server-based solution.

If the Owner decides to grant You an access to the server-based solution, You will be provided with a unique combination of login and password.

In the server-based scenario, we collect media, metadata and telemetry data.

4.1.2.1. Place of storage and processing

If You are using the server-based scenario, your Personal Data will be processed on Owners servers located in Singapore and in the United States of America.

4.1.2.2. Methods of processing

In case You are using a server-based solution the Owner processes Your Personal Data in a proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Personal Data.

The Personal Data processing is carried out using computers and/or IT enabled tools, following organizational procedures and modes strictly related to the purposes indicated here above. In addition to the data controller, in some cases, the Personal Data may be accessible to certain types of persons in charge, involved with the operation of the Owner (administration, legal, system administration) or external parties (such as hosting provider) appointed, if necessary, as data processors by the Owner. The updated list of these parties may be requested from the Owner by You at any time.

4.1.2.3. Retention time

The Personal Data is kept until You decide to delete it. Once you decide to delete your Personal Data it will not any longer be stored on the Owner’s Server.

Please note that some information may be retained if we have a legal obligation to do so, or if it's necessary for the establishment, exercise, or defense of legal claims, in accordance with GDPR requirements.

4.2. If you are using Web Demo

Web Demo provides testing for Liveness Check only and is always server-based.

In the server-based scenario, we collect media, metadata and telemetry data.

4.2.1.1. Place of storage and processing

Personal Data will be processed on Owners servers in Singapore and in the United States of America.

4.2.1.2. Methods of processing

In case if You are using server-based solution the Owner processes Your Personal Data in a proper manner and shall take appropriate security measures to prevent unauthorized access, disclosure, modification, or unauthorized destruction of the Personal Data.

4.2.1.3. Retention time

The Personal Data is kept until You decide to delete it. Once you decide to delete your Personal Data it will not any longer be stored on the Owner’s Server.

4.3. Final considerations

Additionally, we may use the personal data collected in the processes presented above to perform the following processing, acting as controller of the personal data and based on the purposes also presented below:

Substantial public interest, preventing or detecting unlawful acts: (i) develop, maintain and improve the features and functionalities of our technology; (ii) develop new products or services related to fraud prevention; (iii) enable analyses related to information security, as well as its improvement and development to enhance the purpose of fraud prevention; (iv) investigate fraud.
Legitimate interest, bringing benefits to you, the user: (i) evaluation of statistics related to the number of accesses and use of our technology; (ii) improve your user experience.
Legal obligation: (i) comply with regulatory, legal, judicial orders, or even administrative orders from authorized bodies.

The Personal Data may be freely provided by You if You wish to use our Demo Tools.

We may share your data with the following entities:

Our Professionals: To deliver, maintain, and enhance our services and develop new services regarding anti-fraud.
Advisors and Auditors: In connection with corporate transactions, where data may be treated as a business asset.
Service Providers: To enable and facilitate the operation of our services, including security measures and data storage.
Public and Government Authorities: When legally obligated to disclose information.

Data confidentiality and security are maintained when sharing. We strive to anonymize data whenever feasible.

6. DEVICE PERMISSIONS FOR PERSONAL DATA ACCESS

Our Demo Tools may request permission to access Your device’s camera. It is used for accessing the camera or capturing images and video from the device to demonstrate our capabilities in the Demo Tools.

By default, this permission must be granted by You before the respective information can be accessed. Once the permission has been given, it can be revoked by You at any time. In order to revoke these permissions, You may refer to the device settings or contact the Owner for support at the contact details provided in the present document.

The exact procedure for controlling app permissions may be dependent on Your device and software.

Please note that the revoking of such permission might impact the proper functioning of our Demo Tools.

7. SYSTEM LOGS AND MAINTENANCE

For operation and maintenance purposes, we may use personal data (such as IP Address, operating system version, SDK version, package name, device ID, phone model, time stamp) to generate files (System logs) that record interaction with our Demo Tools.

8. MEASURES IMPLEMENTED FOR DATA PROTECTION PURPOSES

The Company stores collected personal data on secure networks. Access to this data is limited to representatives, employees, subsidiaries, associated companies, representative offices, and partners contractually obligated to Oz Forensics to maintain the confidentiality of personal data.

The Company implements the following technical measures to protect Personal Data:

We use GDPR-compliant AWS servers with internationally recognized certifications for data security and retention (more details at https://aws.amazon.com/compliance/iso-certified/). Additionally, Oz Forensics has a signed agreement in place with AWS to guarantee data safeguards and confidentiality.
To prevent physical access of unauthorized personnel, all premises owned by the Company have been equipped with means of technical security alarm, fire alarm, video surveillance and access control system;
Data encryption during data transfers (SSL encryption);
Firewall;
Intrusion detection and protection software;
Other protective measures in accordance with the current possibilities of technology.

Personal data protection measures, as outlined in this section, will remain in effect until the data is depersonalized.

9. OUR DEMO TOOLS DO NOT SUPPORT “DO NOT TRACK” REQUESTS

To determine whether any of the third-party services it uses honor the “Do Not Track” requests, please read their privacy policies.

10. YOUR RIGHTS

As a data subject under the GDPR, you possess the following rights:

Obtain confirmation of the existence of the processing of your data;
Request a copy of your personal data;
Correct incomplete, inaccurate, or outdated data;
Request deletion of personal data that is unnecessary, excessive, or processed in violation of GDPR.
Withdraw previously given consent to process your personal data;
Request restriction of personal data processing or object to the personal data processing;
Request the portability of data to another service or product provider.

To exercise your rights, please send an email to [email protected] with the specifics of your request.

Exercising your right to receive a copy of your personal data cannot infringe upon the rights and freedoms of other individuals.

To ensure your security and enable you to exercise your data rights, we need to verify your identity. This verification may involve requesting additional personal information. By submitting a rights request, you authorize us to collect, use, process, and store your personal data as described in this Privacy Policy.

We will receive and analyze all requests. If your request is denied, we will provide a proper justification for the refusal.

The processing of the requests will be done as quickly as possible, but within one month at the latest. The one-month timeframe begins upon confirmation of your identity or, if not requested by the company, upon receipt of your request. The requested information will then be provided to you. For complex or numerous requests, the company may extend the information provision period by an additional two months, provided you are notified beforehand.

In addition, you can also lodge a complaint with a supervisory authority.

Please note that our Demo Tools provide a test experience and there is no automated decision in these processes.

11. POLICY CHANGES

This policy may be occasionally amended to the extent permitted by the laws of the UAE, Singapore, and the EU, as well as internationally recognized standards for personal data protection.

All amendments to the Privacy Policy will be reflected in the present website, indicating the date, when the amendment has come into effect.

It is strongly recommended to check this page often, referring to the date of the last modification listed at the bottom. If You object to any of the changes to the Policy, You must cease using our Demo Tools.

12. CONTACT US

All queries regarding the provisions of the Policy may be sent to us by one of the following means:

OZ FORENSICS SOFTWARE TRADING LLC Office 384, Saih Shuaib Bldg 2 area, DIC, Dubai, UAE

Office e-mail: [email protected]

Email for GDPR enquire: [email protected]

PreviousWebsite Privacy Policy NextPrivacy Policy: Biometry and Liveness

Last updated 1 day ago

Was this helpful?