A. Account & Administrative Information
When an organization activates the platform, we may collect organization name, authorized administrator information, business contact details, billing details, device identifiers, and account configuration settings (including GDN participation status).
B. Operational Incident Data (Controlled by Organization)
Authorized users may input narrative observations, descriptive attributes, vehicle information, license plate numbers, uploaded images (including facial images where lawfully collected), time, date, location information, and supporting files or media. This data is entered and controlled by the subscribing organization. GIS does not independently verify factual accuracy of submitted content.
C. Biometric & Identity-Related Data
The platform processes identity-related data including facial images, extracted facial feature vectors, license plate numbers, license plate recognition data, and identity similarity indicators. Facial similarity analysis and LPR are used to generate probabilistic similarity indicators. GIS does not determine legal identity.
D. Technical & System Data
We collect limited technical data necessary to operate the system: login timestamps, device metadata, IP address, security logs, and system usage metadata. This information supports security, auditing, and system integrity.
3. How Information Is Used
Information is used solely to provide investigative documentation tools, preserve incident records, perform facial similarity analysis and license plate recognition, detect identity recurrence patterns, enable optional GDN cross-sector correlation (if enabled), maintain system integrity, and process billing.
GIS does not sell operational data, use incident data for advertising, monetize matches or correlations, or share data for marketing purposes.
4. Global Data Network (GDN)
If enabled by an authorized administrator inside the admin portal, identity attributes may be evaluated across participating organizations. Facial similarity analysis may operate cross-sector and license plate recurrence may be evaluated across sectors.
GDN participation is voluntary and controlled by the subscribing organization. It does not share full incident reports between organizations, does not determine legal identity, and does not trigger automatic escalation. Cross-sector similarity indicators remain probabilistic and require human interpretation.
5. Data Ownership
All operational incident data remains the property of the subscribing organization. GIS acts as a service provider and infrastructure operator. Organizations are responsible for lawful collection of facial images, compliance with biometric laws, compliance with privacy regulations, and proper notice and consent where required.
6. Data Retention
Incident data is retained according to organizational retention settings, contractual agreements, and applicable legal obligations. Technical logs may be retained for security and audit purposes. Organizations may request deletion subject to contractual and legal constraints.
7. Biometric & Identity Compliance
The subscribing organization is solely responsible for compliance with the Illinois Biometric Information Privacy Act (BIPA), Texas Capture or Use of Biometric Identifier Act (CUBI), Washington biometric laws, and any other applicable biometric or privacy regulations. GIS provides infrastructure tools and does not obtain biometric consent on behalf of customers.
8. Data Security
GIS implements reasonable administrative, technical, and physical safeguards to protect data. No system can guarantee absolute security. Organizations are responsible for safeguarding credentials and device access.
9. Data Sharing
Operational data may be disclosed only at the direction of the subscribing organization, to authorized infrastructure providers under contract, or as required by lawful court order. GIS does not independently disclose operational identity data.
10. Updates
We may update this Privacy Policy periodically. Continued use of the platform constitutes acceptance of updates.
11. Contact
[Insert Legal Contact Email]
[Insert Business Address]