Last updated: 15 July 2025
AgeShield (the "Service") is a privacy‑first technology that allows a person to prove they are above a required minimum age. The workflow is:
AgeShield functions as a data processor on behalf of the business requesting the age check (the "Client"), who remains the data controller/responsible party under applicable data‑protection laws.
| Data category | Description | Purpose |
|---|---|---|
| Facial image (selfie) | One frame captured from the device camera | Estimate age and optionally perform liveness checks |
| Technical metadata | Timestamp, country/region, device and camera parameters, lighting conditions | Service quality, fraud prevention, troubleshooting |
| Verification result | Estimated age or age-threshold result ("over/under") plus transaction ID | Returned to the Client so they can grant or deny access |
We do not perform facial recognition or compare your image against any identity database. The image is used solely for age estimation and is destroyed immediately.
The Client determines the lawful basis for the age check (e.g., compliance with law, legitimate interest, or your consent). Tech 555 Inc. processes data only on documented instructions from the Client.
We do not retain any personal data once the age‑check result has been issued. Facial images, technical metadata, transaction identifiers and any other information that could identify an individual are permanently deleted within milliseconds of processing.
The Service keeps only aggregate, non‑personal usage metrics—for example, the total number of verifications attempted and completed, average processing time, and overall pass/fail rates. These statistics cannot be traced back to any user and are used solely to monitor performance and improve the Service. Aggregate metrics are retained for analytic purposes for up to 24 months and may subsequently be stored in anonymised form for trend analysis.
We do not disclose any personal data to any third party. The only information provided to the Client is the outcome of your age check—such as a simple "18+" or "under 18" status—along with a non‑personal transaction identifier, enabling the Client to decide whether to grant or deny access. Facial images, technical metadata, and any other data that could identify you are never shared outside Tech 555 Inc. and are erased in line with Section 4.
Processing is performed in ISO 27001‑certified data centres located in the United States (currently AWS us‑east‑1 and us‑west‑2). Data is encrypted in transit (TLS 1.2+) and at rest (AES‑256). Access is strictly controlled and audited with multi‑factor authentication.
The Service sets only one first‑party, essential cookie:
| Cookie | Purpose | Duration |
|---|---|---|
connect.sid |
Maintains a temporary session identifier so the verification flow can continue securely between pages and prevent replay attacks | Session (deleted when the browser is closed) |
No marketing, analytics, or third‑party cookies are used.
Depending on your location, you may have rights to access, delete, correct, object to, or restrict the processing of your personal data. Please contact the Client who initiated the age verification to exercise these rights. Where Tech 555 Inc. is obliged to respond directly, write to the postal address below.
Data controller: The Client that requested your age verification
Data processor: Tech 555 Inc.
PO Box 50624
Henderson, NV 89016
United States
We do not operate a general privacy email inbox. All correspondence should be sent by post to the address above or routed through the Client.
We may update this policy to reflect changes to the Service, legal requirements, or our practices. We will publish any revisions here and inform Clients so they can notify end users where required.