Tech Support : support@biometrica.com

Contact
Higher Education · General Counsel

Your Security Team Wants Real-Time Threat Detection. Your Privacy Team Said BIPA. We Solved Both.

Non-match images deleted instantly. No biometric templates created. No video recorded. No education records generated. Every match human-verified. Full audit trails. The data that triggers BIPA, FERPA, CCPA, and biometric privacy liability does not exist in the Safience architecture.

All Products
Schedule a Legal Architecture Review Back to Higher Education
Zero
Biometric Templates

No faceprints, no template database, no biometric identifiers stored for non-matches. Nothing to trigger BIPA.

Zero
Education Records

No student data collected. No video recorded. No footage to classify as a FERPA record.

$650M+
BIPA Settlements Avoided

Cumulative class action settlements for biometric data collection. Safience eliminates the regulatory trigger.

100%
Human-Verified

No autonomous decisions. No automated confrontations. Every match reviewed by a trained analyst before any alert is sent.

Every Security Technology Creates Legal Risk. This One Eliminates It.

Your campus security team brings you a proposal for facial recognition technology. Your instinct is correct: traditional facial recognition creates more legal exposure than it resolves. Biometric template databases trigger BIPA. Video footage reviewed in conduct proceedings becomes a FERPA record. Automated alerts without human verification create due process concerns. On-premises data storage creates discovery obligations. Safience was designed to pass your desk. Here is the legal architecture that eliminates each of these exposures.

  1. BIPA: No Collection, No Liability

    Illinois BIPA provides a private right of action with liquidated damages of ,000-,000 per violation. The trigger is "collection" of biometric identifiers. Traditional facial recognition systems collect and store biometric templates — creating a class of affected individuals and a class-action-ready liability pool. Safience stores zero biometric templates for non-matches. The image is captured, compared against law enforcement records and institution watchlists, and deleted instantly if there is no match. No template is created. No biometric identifier is retained. The regulatory trigger — "collection" — never occurs. You cannot violate BIPA if you do not collect biometric identifiers.

  2. FERPA: No Records Created

    When CCTV footage is reviewed in connection with a student conduct matter, that footage becomes an education record subject to FERPA access, amendment, and disclosure rights. The management burden is substantial — and the litigation exposure when institutions mishandle FERPA requests is real. Safience does not create education records. No video is recorded. No footage exists to review, produce, or classify. Non-match images are deleted instantly. There is no footage to become a FERPA record because there is no footage.

  3. CCPA: No Personal Information Retained

    CCPA gives California residents rights over personal information, including biometric information. For non-matches — 99.99%+ of individuals who pass through a sensor — no personal information is collected or retained. Instant deletion means there is no data subject to an access request, deletion request, or opt-out right. For confirmed matches, the data is law-enforcement-sourced criminal history information used for campus security purposes — a category with specific CCPA exemptions.

  4. Due Process: Human Verification Mandatory

    Automated facial recognition alerts raise due process concerns: what if the algorithm is wrong? What if a student is confronted based on a false positive? Safience eliminates this concern architecturally. Every candidate match is verified by a trained human analyst at the Rapid Action Center before any alert is sent. No autonomous decisions. No automated confrontations. No student is ever approached based on raw algorithm output. The human-in-the-loop is mandatory, not optional.

  5. Discovery and Subpoena: Nothing to Produce

    Traditional surveillance systems create massive data stores that become discovery obligations in litigation. Months of video footage. Millions of biometric templates. Access logs showing every student's daily movements. Safience creates none of this. Non-match images are deleted instantly. No video is stored. No movement data is collected. When opposing counsel subpoenas "all facial recognition data," your response for non-matches is: it does not exist. Data that does not exist cannot be produced, mishandled, or used against your institution.

  6. Negligence Defense: Proactive Documentation

    When a known threat enters campus and causes harm, your litigation defense depends on demonstrating that the institution took reasonable proactive measures. Cameras that recorded but did not identify are reactive. Card readers that verified cards but not people are incomplete. With Safience, your institution can demonstrate: real-time identity verification at entry points, hourly registry updates, human-verified alerts, and documented audit trails. That proactive record is the difference between a defensible security posture and a negligence finding.

  • Non-match deletion is an architectural constraint, not a configurable setting — the system is incapable of retaining non-match data
  • No video recording at any system tier — there is no footage to become a FERPA record, to subpoena, or to produce in discovery
  • No biometric template creation for non-matches — no faceprint database, no stored identifiers, no BIPA trigger
  • Mandatory human verification on every match — no autonomous alerts, no automated confrontations, no due process concerns from algorithm-only decisions
  • Compartmented access controls — Title IX data routes only to Title IX personnel; trespass alerts route only to campus police; no cross-contamination of sensitive categories
  • Full audit trails — every detection, verification, alert, and response is timestamped and documented for compliance reviews and litigation defense
  • Exceeds NIST OSAC Technical Guidance Document 0008 — reference this standard directly when evaluating the architecture
  • 100% law-enforcement-sourced data — no scraped social media, no commercial data brokers, no unverified sources; complete chain of custody for every record

Regulatory Alignment by Architecture

BIPA / State Biometric Privacy

BIPA's trigger is "collection" of biometric identifiers. Safience deletes non-match images instantly — no template, no identifier, no collection. The architecture eliminates the regulatory trigger itself, not just the compliance burden. This analysis applies equally to Texas CUBI, Washington state biometric law, and emerging state statutes modeled on BIPA.

FERPA

No video recorded. No student data collected. No footage to review in conduct proceedings. No education records created. The architecture is incapable of generating FERPA-regulated data for non-matches. For confirmed matches, the data relates to law enforcement records and institutional security restrictions — not education records.

Clery Act

Proactive threat identification at entry points creates the compliance record the Department of Education expects: documented prevention, not just reactive investigation. Timestamped detection events, human verification records, and alert documentation directly support Clery reporting. Penalties: up to ,544 per infraction.

Title IX / Campus SaVE Act

Automated no-contact order enforcement via X-LST compartmented watchlists. Documented detection events for OCR investigation readiness. Continuous monitoring of respondents via eMotive for new arrest activity. Complainant confidentiality preserved in every alert. The enforcement documentation OCR expects to see.

CCPA

Non-match data deleted instantly — no personal information collected or retained for 99.99%+ of individuals. No data subject to access, deletion, or opt-out requests. Confirmed matches involve law-enforcement-sourced criminal history information with specific CCPA exemptions for security purposes.

Legal Exposure: Traditional Security Technology vs. Safience

Legal Dimension Traditional CCTV + Biometric Access Safience Architecture
BIPA Exposure Biometric templates stored; class-action-ready liability (K-K per violation) Zero templates; no "collection" of biometric identifiers
FERPA Records Video reviewed in conduct proceedings becomes education record No video recorded; architecturally incapable of creating FERPA records
Discovery Burden Months of video and millions of templates to produce, review, and protect Non-match data does not exist; nothing to produce for non-matches
Due Process Automated alerts with no human review; confrontation based on algorithm Mandatory human verification; no autonomous alerts or confrontations
Negligence Defense Reactive documentation; cameras recorded but did not identify Proactive detection with documented audit trail; defensible security posture
Student Movement Data CCTV logs and card access records create detailed movement profiles Zero movement data; system cannot answer who was where or when
Clery Compliance Reactive investigation documentation Proactive prevention documentation with timestamped audit trails

Platform Legal Architecture

Every Safience product was designed to operate within the regulatory environment that higher education faces. Compliance is not a feature. It is the architecture.

RTIS/RVIS: Edge Sensors

Zero-retention entry-point sensors

Single image per event. Instant non-match deletion. No video. No biometric templates. No on-device data. The privacy architecture starts at the sensor: a compromised device reveals nothing because it stores nothing. BIPA-safe. FERPA-aligned. No discovery obligation for non-match data.

Learn More

X-LST: Compartmented Watchlists

Title IX and conduct enforcement with access controls

Institution-controlled watchlists with compartmented alert routing. Title IX alerts go only to Title IX personnel. Complainant confidentiality preserved. Safience has no visibility into list contents. Documented enforcement for OCR investigation readiness.

Learn More

eMotive: FCRA-Compliant Monitoring

Consent-based continuous criminal monitoring

FCRA-compliant workflow. Written consent required and certified. No automated adverse action. Encrypted, credentialed alert delivery. Safience personnel cannot access employee data. Your institution makes all employment decisions. Audit trail documents continuous duty-of-care.

Learn More

UMbRA: Law Enforcement Data Only

100% LE-sourced, verified, chain-of-custody data

56M+ identities sourced exclusively from law enforcement. No scraped social media. No commercial data brokers. No DMV photos. No student ID photos. Complete chain of custody. Court-ready evidence standard. Every record traces to a law enforcement source agency.

Learn More

See the full compliance analysis across six regulatory frameworks — Clery, Title IX, FERPA, BIPA, CCPA, and Campus SaVE Act.

Compliance Deep Dive

See the five-layer technical architecture, FERPA data flow classification, and NIST OSAC alignment documentation.

How It Works

See the financial case: Clery penalties, negligence exposure, BIPA liability, and insurance positioning.

CFO View

This Is the Facial Recognition Proposal You Can Approve.

Schedule a Legal Architecture Review. Walk through every data flow, every deletion event, every regulatory alignment point. Bring your privacy counsel. Bring your CISO. Bring the NIST OSAC Technical Guidance Document 0008 and check it against the architecture. We built Safience for the General Counsels who said no to everything else.

Schedule a Legal Architecture Review Back to Higher Education