Privacy Policy for SwapFaces AI
Facial Privacy Protection - Core Commitments
- Your Face, Your Rights: Complete ownership of all original and face-swapped content
- Instant Biometric Deletion: Facial recognition data deleted immediately after processing
- Zero Facial Profiles: We never create or store permanent facial recognition profiles
- No Staff Access: Technical architecture prevents any human from viewing your faces
- BIPA Compliant: Strict adherence to the world's toughest biometric privacy laws
- 30-Day Refund Guarantee: Customer-first refund policy with no questions asked
We understand that your face is your most personal identifier. Our entire system is designed around protecting your facial biometric data.
TecDeon, Inc. ("we," "our," or "us") operates SwapFaces AI, providing AI-powered face swapping and appearance modification technology. This Privacy Policy explains our commitment to protecting your facial data and personal information when using our services at https://www.swapfaces.ai.
1. Our Privacy-First Approach
1.1 Flexible Access Options
Multiple Access Methods: You can use SwapFaces AI in two ways:
- Guest Access: Try our services without creating an account - perfect for quick trials
- Google OAuth Login: Sign in for enhanced features, credit management, and processing history
We believe face swapping should be accessible and private, whether you choose to register or remain anonymous.
1.2 Facial Biometric Data Protection
We understand that your face is your most personal identifier. Our entire system is designed around protecting facial biometric data:
- Instant Processing: Facial recognition occurs in real-time without storing biometric templates
- No Facial Mapping Storage: We don't create or store permanent facial recognition profiles
Ephemeral Processing: All facial analysis data is deleted immediately after processing
2. Information We Process
2.1 Google OAuth Authentication (Optional)
When you choose to sign in using Google OAuth, Google (not us) collects and provides us with limited information from your Google account:
- Email address (for account identification)
- Name and profile picture (if available in your Google profile)
- Unique Google user identifier
Important: We only receive this information after you explicitly grant permission through Google's authorization flow. Google's data collection is governed by Google's Privacy Policy, not ours.
2.2 Visual Content Processing
What we temporarily process:
- Source images/videos containing faces for swapping
- Target face images for replacement
- Processing parameters and quality settings
Biometric Data Handling: Facial landmark detection and mapping occur in isolated processing containers and are immediately discarded after completion.
2.3 Technical Data (Minimal Collection)
- IP address (for abuse prevention only)
- Browser type and device information
- Service performance metrics
- Error logs (no personal data included)
2.4 Payment Information (When Applicable)
- Credit card information processed by PCI-compliant third parties
- Transaction records (no biometric data linked)
- Usage credits and subscription status
3. Instant Deletion Protocol
3.1 Automated Data Purging
24-Hour Maximum Retention:
- Uploaded Images/Videos: Permanently deleted within 24 hours
- Processed Results: Available for download for 24 hours, then auto-deleted
- Facial Analysis Data: Deleted immediately upon processing completion
- Session Data: Cleared when you close your browser
3.2 No Backup or Archive Policy
Unlike many AI services, we maintain zero backup systems for user content. Once deleted, your images and facial data are permanently and irretrievably destroyed.
4. Advanced Security for Facial Recognition
4.1 Biometric-Grade Security
- AES-256 encryption for all facial data during processing
- Isolated processing environments prevent data leakage
- No cross-session data sharing between different users
- Real-time threat monitoring for facial data protection
4.2 Staff Access Restrictions
Zero Human Access: Our technical architecture ensures that no human staff member can view, access, or download your uploaded faces or processed results.
5. Face Recognition Technology Transparency
5.1 How Our AI Processes Faces
- Face Detection: AI identifies facial boundaries and key features
- Landmark Mapping: Temporary mapping of facial geometry (not stored)
- Style Transfer: Face swapping occurs in encrypted containers
- Result Generation: Final image created and made available for download
- Data Destruction: All processing data immediately deleted
5.2 No Machine Learning from Your Data
We do not use your uploaded faces to train or improve our AI models. Your facial data is processed only for your specific request and is never used for any other purpose.
6. Third-Party Services and Data Sharing
6.1 Limited Third-Party Integration
We minimize third-party services to protect your privacy:
- Payment Processing: Stripe (PCI DSS compliant, no biometric data shared)
- Cloud Infrastructure: AWS (encrypted storage, facial data never persisted)
- CDN Services: Cloudflare (for performance, no personal data)
6.2 No Data Sales or Marketing
We never sell facial data or any personal information. We don't participate in data broker networks or advertising data exchanges.
7. International Biometric Privacy Compliance
7.1 Biometric Privacy Laws
We comply with the world's strictest biometric privacy regulations:
- Illinois BIPA (Biometric Information Privacy Act)
- EU GDPR Article 9 (Special Categories of Personal Data)
- CCPA (California Consumer Privacy Act)
- Texas Capture or Use of Biometric Identifier Act
7.2 Consent and Rights
By using our service, you provide explicit consent for temporary processing of biometric identifiers solely for face swapping purposes.
8. Your Biometric Privacy Rights
8.1 Under GDPR and CCPA
- Right to Know: Understand what biometric data we process
- Right to Delete: Request immediate deletion (though we auto-delete within 24 hours)
- Right to Restrict: Limit how we process your facial data
- Right to Object: Opt-out of any processing
8.2 Under State Biometric Laws
- No Sale of Biometric Data: We never sell facial recognition data
- Informed Consent: Clear disclosure of biometric data processing
- Secure Destruction: Guaranteed deletion of biometric identifiers
9. Content Creation and Ethical Use
9.1 Responsible AI Face Swapping
We promote ethical use of face swap technology:
- Consent Reminder: Only swap faces with permission
- Deepfake Detection: Results include metadata indicating AI modification
- Educational Resources: Guidance on responsible face swapping
9.2 Prohibited Uses
Our service cannot be used for:
- Creating non-consensual intimate imagery
- Fraudulent identity creation
- Harassment or defamation
- Circumventing security systems
10. Age Requirements and Protection
10.1 Adult-Only Service
SwapFaces AI is restricted to users 18 years and older. We implement technical measures to prevent processing of images containing minors.
10.2 Minor Protection Protocols
- Automated detection systems flag potential minor faces
- Immediate processing termination for flagged content
- No storage of any flagged images
11. Data Breach and Incident Response
11.1 Biometric Data Breach Protocol
In the unlikely event of a security incident involving facial data:
- Immediate Response: All processing stopped within minutes
- User Notification: Affected users contacted within 24 hours
- Authority Reporting: Relevant biometric privacy authorities notified
- Forensic Investigation: Third-party security audit conducted
12. Technology and Infrastructure
12.1 Privacy-by-Design Architecture
- Distributed Processing: No central facial data repository
- Edge Computing: Processing occurs close to users for faster deletion
- Container Isolation: Each session completely isolated from others
- Quantum-Resistant Encryption: Future-proof security measures
13. Frequently Asked Questions
How quickly is my facial data deleted?
Facial recognition data is deleted immediately after processing completes. Your uploaded images and face swap results are available for 24 hours, then permanently deleted.
Do you create facial recognition profiles?
No. We never create or store permanent facial recognition profiles. All biometric analysis is temporary and occurs only during your active processing session.
Can your employees see my face swaps?
No. Our technical architecture prevents any human staff from accessing your facial data or face swap results, even for technical support purposes.
What biometric privacy laws do you follow?
We comply with Illinois BIPA, EU GDPR Article 9, CCPA, Texas biometric laws, and other international biometric privacy regulations - the strictest standards worldwide.
How do I get a refund?
Contact [email protected] within 30 days if you've used less than 80% of your credits. We offer hassle-free refunds with no questions asked.
14. Updates and Transparency
14.1 Policy Changes
Any changes to our privacy practices will be communicated through:
- Prominent website notification for 30 days
- Updated "Last Modified" date
- Email notification (if you've provided email for premium features)
15. Contact and Data Protection
TecDeon, Inc.
- Email: [email protected]
- Data Protection Inquiries: [email protected]
- Website: https://www.swapfaces.ai
- Registered Address: 131 Continental Dr, Suite 305, Newark, DE 19713 US
- Biometric Privacy Concerns: [email protected]
16. Legal Framework and Compliance
This Privacy Policy ensures compliance with:
- Illinois Biometric Information Privacy Act (BIPA)
- European Union General Data Protection Regulation (GDPR)
- California Consumer Privacy Act (CCPA)
- Texas Biometric Privacy Laws
- International biometric privacy standards
Your face, your privacy, our commitment. SwapFaces AI is built on the principle that biometric data deserves the highest level of protection.