Privacy and Biometrics Index

Legal & Policy (Start Here)

BluSKY Privacy Policy
BluB0X’s privacy statement outlines transparency, data‑minimization, user rights (e.g., CCPA), and security practices applied to BluSKY. It emphasizes training, disclosure, and that BluB0X does not sell personal information.
BluINFO Link. (BluINFO)

Biometric Data Safeguard Policy and Consent
Defines how BluSKY collects, uses, secures, retains, and deletes biometric data. Consent is obtained at enrollment; BluB0X states it will not sell, lease, or trade biometric data and notes typical retention (e.g., usually one year from capture) with secure handling requirements.
BluINFO Link. (BluINFO)

Consent to the Collection of Biometric Data (Form/PDF)
A downloadable consent form for sites using biometric devices with BluSKY. It documents a person’s informed consent to collection, use, and storage of biometric information for access control.
BluINFO Link. (BluINFO)

BluB0X Information Security Plan (Appendix A: Electronic Record Retention)
Describes record‑retention guidance and states that published periods are maximums and should be adjusted to comply with local laws. Useful when setting event/photo/video retention baselines.
BluINFO Link. (BluINFO)

Code of Conduct Policy (Privacy & Retention Expectations)
Reinforces BluB0X’s organizational expectations for handling personal information and references the Records Retention Policy as baseline guidance; legal and accounting requirements may require longer retention.
BluINFO Link. (BluINFO)

Compliance by Jurisdiction (City/State Rules & Best Practices)

Appearance Recognition Compliance Guide
A practical matrix of U.S. city/state rules for using face/appearance recognition. Highlights Portland, OR as a private‑sector “hard stop” in public accommodations, and shows how BluSKY’s on‑reader opt‑in/opt‑out and “no biometric measurements stored” approach aligns with consent‑centric states (e.g., IL, TX, WA, NY). Recommends signage, consent logs, and retention schedules; clarifies proof‑of‑presence photos are not biometric templates.
BluINFO Link. (BluINFO)

Where BluSKY Person Recognition May Not Be Accepted
Maps city bans (e.g., Portland, OR public accommodations) and state‑level consent/retention laws such as BIPA (IL) requiring written consent, a public retention schedule, and deletions after purpose or 3 years; includes notes on NYC signage/no‑sale rules and Baltimore (expired private ban).
BluINFO Link. (BluINFO)

Appearance Recognition in BluSKY (Privacy by Design)

Appearance Recognition in BluSKY — Short Version
Explains the concept in plain language: fast, hands‑free access with full user control. BluSKY captures a proof‑of‑presence photo linked to the access event and does not store biometric measurements; instead, it uses secure, non‑reversible codes.
BluINFO Link. (BluINFO)

Appearance Recognition in BluSKY — Standard Form
Clarifies “proof‑of‑presence vs. biometric template,” opt‑in/out at any time, and multi‑factor pairing (card/phone/QR/PIN + appearance). Emphasizes that stored data cannot be reverse‑engineered to recreate a face.
BluINFO Link. (BluINFO)

Appearance Recognition in BluSKY — Technical Form
Technical perspective: no permanent templates, non‑human‑readable, non‑reversible embeddings, and proof‑of‑presence photos used only for event auditing. Keeps control with reader‑level opt‑in/out.
BluINFO Link. (BluINFO)

Video/Image Capture & Retention Settings

“Gold Standard” Configuration for BluSKY Cameras
Implementation guidance for cloud video uploads and event‑driven clips. Notes the default cloud retention is 30 days and covers enabling uploads for portal/intercom/monitoring events.
BluINFO Link. (BluINFO)

Video Management System A&E Spec (Evidence Lock & Retention)
A&E guidance includes Evidence Lock and the ability to manually extend video retention for specified time intervals, with retention/grooming policies for evidentiary preservation.
BluINFO Link. (BluINFO)

BluSKY Access Control (Photo Verification)
Describes Photo Verification—automatic photo capture from camera‑monitored portals for each access attempt—useful for audit trails and event corroboration alongside access logs.
BluINFO Link. (BluINFO)

Person Reader Overview (On‑Device Imaging & Analytics)
Product overview noting built‑in camera/recorder and analytics; also describes how Person Reader captures/records video and can analyze/update photo IDs to maintain current images (policy‑bound by your consent and retention settings).
BluINFO Link. (BluINFO)

Analytics, CSV Export & Data Governance

BluSKY Reporting & Analytics Guide for Tenants (PDF + Page)
Explains how tenants access reports/analytics across security modules and export results—useful when defining what CSV analytics you generate and store. Pair with local retention policies for exported files.
BluINFO Link (overview page) · PDF. (BluINFO)

Integrator Sales Training Outline (Export Capabilities)
Highlights export to CSV/Excel/PDF for lists and reports—a reminder to apply your organizational retention rules to exported artifacts outside BluSKY.
BluINFO Link. (BluINFO)

Evolution & Significance of Data Lakes (Governance & Retention)
Blog guidance stressing compliance with GDPR/HIPAA, defining data‑retention policies, and establishing governance for surveillance and security datasets—including analytics outputs.
BluINFO Link. (BluINFO)

Training, Deployment & Developer Guidance

API Integration Testing & Certification — Security & Privacy Compliance
For integrators building to BluSKY APIs: mandates adherence to security standards (SSL/TLS) and privacy regulations (e.g., GDPR, HIPAA), with robust data‑protection practices end‑to‑end.
BluINFO Link. (BluINFO)

How Do You Achieve Data & Privacy Compliance Across Countries?
Overview of GDPR/CCPA/PIPL themes—consent, data minimization, disclosure—which inform signage, consent capture, and retention schedules in multi‑jurisdictional deployments.
BluINFO Link. (BluINFO)

Blogs, Use Cases & Thought Leadership (Privacy/Biometrics Context)

Elevator Security in the Age of Mobile and Biometrics
Discusses the rise of biometrics in elevator access and how modalities integrate with BluSKY to improve assurance—useful context for communicating user benefit alongside consent/retention controls.
BluINFO Link. (BluINFO)

The Future of Vertical Transportation: AI + Security
Explains Person Reader biometric recognition in elevator flows with integrated video analytics—helpful for stakeholder education on why appearance recognition is paired with transparent privacy controls.
BluINFO Link. (BluINFO)

AI Surveillance as a 24/7 Concierge (BluEYES)
Presents a privacy‑first approach to analytics that focuses on behavior and context, with encrypted cloud video accessed only by authorized staff; supports opt‑in community alerting models.
BluINFO Link. (BluINFO)

Visitor Management: 20 Worst Mistakes
Flags “Ignoring data‑privacy and retention policies” as a costly error (e.g., GDPR/CCPA exposure) and reinforces the need for documented retention.
BluINFO Link. (BluINFO)

Visitor Management: Top 20 Prioritized Considerations
Recommends maintaining detailed audit logs with at least one year of retention (then archive)—a useful benchmark when setting CSV/report export retention.
BluINFO Link. (BluINFO)

How Modern Visitor Management Systems Keep Multifamily Communities Safer
Advises privacy compliance and appropriate data‑retention policies (e.g., auto‑deleting or anonymizing visitor records after X days) for tenant‑facing deployments.
BluINFO Link. (BluINFO)

Release Notes & Transparency (Image Handling & Diagnostics)

Release Notes — November 2024
Person Reader updates describe Auto‑ID image handling (up to 100 Auto‑ID images per user), local vs. global training sets, and “Face Scrub” processing—useful for understanding how training images are cached and combined within policy.
BluINFO Link. (BluINFO)

Release Notes — January 2025
Person Reader update adds image quality checks at enrollment and optional diagnostic face‑crop saving (off by default), plus Data Lake library updates—helpful when defining audit/retention for troubleshooting artifacts.
BluINFO Link. (BluINFO)

Release Notes — January 2024 (CCPA Policy Addition)
Notes addition of a formal CCPA policy in BluINFO, underscoring continuing alignment with privacy regulations.
BluINFO Link. (BluINFO)

Quick Forms & References

Biometric Consent (Downloadable Form)
Printable consent form for informed opt‑in to biometric collection/use in BluSKY; keep signed copies with your consent log and retention schedule.
BluINFO Link. (BluINFO)