Coco AI Biometric Data Policy
Effective Date: November 1, 2025 Last Updated: December 11, 2025
This Biometric Data Policy is a standalone document that supplements and is incorporated by reference into the main Coco AI Privacy Policy. It specifically addresses the collection, retention, and use of Biometric Data derived from the Virtual Try-On feature on our website, tryvyb.co (the "Site").
1. Biometric Data Defined
For the purposes of this Policy, "Biometric Data" means Technical Processing Data derived from an individual's Uploaded Images.
This includes:
- Geometric data points, feature vectors, model parameters, and algorithmic representations (e.g., scans of facial or body geometry, or landmarks) extracted from the image.
- Purpose: This data is used solely to identify, measure, and map unique individual characteristics for the operation and improvement of the Virtual Try-On AI model.
2. Notice, Consent, and Written Release
This Policy serves as the written notice and outlines the specific legal written release (consent) required for the collection of Biometric Data.
A. Explicit Consent (Written Release):
By selecting the "Virtual Try-On" feature and uploading an image of yourself, you are providing your written, informed consent and release for Coco AI and its Third-Party AI Providers to collect, process, and store your Biometric Data as detailed in this Policy.
B. Specific Purpose of Collection:
Your Biometric Data is collected and stored solely for the specific purpose of:
- Performing the core function of the Virtual Try-On service in real-time (Contractual Necessity).
- Continually developing, training, benchmarking, and improving our Virtual Try-On AI models, related algorithms, and other current and future products and services (Perpetual Written Consent).
3. Disclosure and Sharing of Biometric Data
Your Biometric Data will not be sold, traded, or leased. We will only disclose or share your Biometric Data:
- Third-Party AI Providers: Shared with AI service providers for real-time processing and the perpetual training/improvement of the AI models, subject to strict confidentiality agreements.
- Service Providers: Shared with companies that perform essential functions on our behalf (e.g., data storage, platform hosting).
- As Required by Law: In response to a warrant, subpoena, or other legally enforceable request by a court or government agency.
4. Data Retention and Destruction Schedule
We have established a retention schedule and guidelines for the permanent destruction of Biometric Data, available to the public in this Policy:
| Data Type | Specific Retention Term | Destruction Protocol |
|---|---|---|
| Active Biometric Data (linked to your account) | Retained until the earliest of: (1) One (1) year after your last interaction with the Virtual Try-On feature; (2) Receipt of a valid Opt-Out Request (Section 5); or (3) Three (3) years if required by the law of your state of residence (e.g., Illinois). | Permanently deleted from active storage systems and backups within a commercially reasonable timeframe. |
| Biometric Data for AI Training (perpetual license) | Retained indefinitely in an aggregate or de-identified manner. | This data is incorporated into the resulting AI models (derivative works) and cannot be retroactively destroyed or removed from the models themselves. |
5. Your Right to Opt-Out of AI Training
By uploading an image, you grant us and our Third-Party AI Providers a non-exclusive, perpetual, irrevocable license to use your Biometric Data for AI model training.
You have the right to request that your Active Biometric Data not be used for future AI model training.
- To Opt-Out: You must send an email to support@cocogen.ai.
- Effect of Opt-Out: An opt-out request will trigger the destruction of your Active Biometric Data (per the protocol above) and stop its use in future model training cycles. It does not require the destruction of data already incorporated into existing AI models or derivative works.
6. Data Security and Standard of Care
We store, transmit, and protect all Biometric Data using a reasonable standard of care within our industry. This standard is the same as or more protective than the way we store other confidential and sensitive information we collect, using technical, administrative, and physical safeguards designed to ensure the integrity and confidentiality of the data.
7. Private Right of Action (For Illinois Residents)
Residents of Illinois have the right to seek damages, attorneys' fees, and litigation costs for any violation of the Illinois Biometric Information Privacy Act (BIPA) relating to the collection and handling of your Biometric Data.
Contact Us
If you have any questions about this Biometric Data Policy or wish to exercise your data rights, please contact us at: support@cocogen.ai