How long the data is needed will depend on the nature of the data and relevant legal or operational retention needs. For example, in the event of a government audit, for any successful identity verification meeting the National Institute of Standards and Technology policy standards (i.e., NIST 800-63-2 and 800-63-3), the National Archives requires that this encrypted evidence be securely retained as proof of this verification.
Additionally, you may revoke permission from selected organizations and authorized apps to view any of your data (biometric or otherwise) shared in your ID.me My Account portal.
For further questions about how ID.me safely stores your Biometric Data, please contact privacy@id.me. We will respond to the request promptly within the time frame and in the form required by applicable law.