Connect+_DAIA
Privacy Policy
Last updated: March 1, 2026
Hawkeyes ("we," "us," or "our") operates the Connect+_DAIA mobile application (the "App"). This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use the App. Please read this policy carefully. By using the App, you agree to the collection and use of information in accordance with this policy.
1Information We Collect
1.1 Personal Information
When you register or use the App, we may collect:
- Name and phone number
- Email address
- Gender, age group, and ethnicity
1.2 Biometric and Image Data
- Selfie photographs — captured via the device camera for identity verification and facial matching purposes.
- Stock photographs — captured via the device camera for stock reporting and AI-powered analysis.
1.3 Location Data
Precise location (GPS) — collected when you perform key actions such as punching in/out at an outlet, submitting stock reports, or recording engagements. Location data is used to verify your physical presence at an assigned outlet.
1.4 Device Information
- Device identifier (Android ID or iOS Vendor ID)
- Device name and model
- Operating system and version
1.5 Usage and Session Data
- Authentication tokens stored securely on your device
- Session information (active outlet, active brand promoter)
- Attendance records (punch-in / punch-out times, timestamps)
- Stock reporting data (product quantities, report types, submission timestamps)
- Engagement records (call type, sales data, trial data, giveaway data, feedback, and remarks)
2Face Data Collection, Use, and Protection
This section provides a comprehensive explanation of how the App collects, uses, stores, shares, and retains face data, in compliance with Apple's App Store Guidelines and applicable privacy regulations.
2.1 What Face Data We Collect
The App collects facial photograph images (selfies) captured using the device's front-facing camera. Specifically:
- A selfie photograph is captured during brand promoter registration to create a reference image for identity verification.
- A selfie photograph is captured at the time of attendance punch-in at the assigned retail outlet.
The App does not collect, generate, or store facial geometry data, face maps, Face ID data, TrueDepth camera data, or any biometric template derived from the user's face on the device. The face data collected consists solely of standard photographic images (JPEG format).
2.2 How We Use Face Data
Collected face data (selfie photographs) is used exclusively for the following purposes:
When a brand promoter registers, a selfie is captured and uploaded to our server as a reference image for that individual.
When a brand promoter punches in at an outlet, a new selfie is captured and sent to our server. The server performs a server-side face matching comparison between the newly captured selfie and the previously stored reference selfie to confirm the individual's identity. The App receives a match/no-match result along with a confidence score.
The selfie image is associated with the attendance record as photographic proof of physical presence at the outlet.
Face data is never used for advertising, marketing, tracking across apps, building user profiles for unrelated purposes, or any purpose other than identity verification and attendance confirmation as described above.
2.3 Where Face Data Is Stored
Selfie images are temporarily held in the device's memory only during the capture and upload process. They are not persistently stored on the device after successful upload.
Selfie images are uploaded and stored on our secure servers (cloud-hosted infrastructure). All data in transit is encrypted using HTTPS/TLS. Data at rest is stored in access-controlled environments with encryption.
2.4 Face Data Sharing with Third Parties
Face data (selfie photographs) is not sold, rented, or shared with any third parties for their own purposes. Face data may only be processed by:
- Our server-side facial matching service — which performs the comparison between selfie images to produce a match/no-match result. This service operates under our direct control and is subject to strict data processing agreements and confidentiality obligations.
- Cloud infrastructure providers — who host our servers, acting solely as data processors under our instruction and bound by contractual data protection obligations.
No face data is shared with advertisers, analytics providers, data brokers, or any other unrelated third parties.
2.5 Face Data Retention
Retained for as long as the brand promoter's account is active and operational. Upon account deletion or deactivation, the reference selfie is deleted from our servers.
Retained for the duration required for operational auditing and compliance purposes (typically the duration of the active campaign or project), after which they are deleted.
Selfie images are not persistently stored on the device. Temporary cached data is cleared after the upload process is complete.
Users or their administrators may request deletion of all face data by contacting us at the address provided in Section 12 of this policy.
2.6 User Consent for Face Data
- The App explicitly requests camera permission from the user before any selfie can be captured. Users can decline this permission at any time through their device settings.
- By capturing and submitting a selfie within the App, the user provides informed consent for the collection and use of their face data as described in this section.
- Users are informed of the purpose of the selfie capture at the point of collection (registration and attendance punch-in screens).
3How We Use Your Information
- ✓Identity Verification — Selfie photos and facial matching (AI-based) to verify the identity of brand promoters.
- ✓Attendance Tracking — Location data and timestamps to confirm physical presence at assigned retail outlets.
- ✓Stock Reporting & Analysis — Photographs and product quantity data to facilitate stock reporting. AI analysis is performed on stock images to assess planogram adherence, shelf compliance, and variant availability.
- ✓Engagement Tracking — Recording consumer interactions including sales, trials, engagements, and giveaways.
- ✓Operational Insights — Dashboard and summary data to monitor daily outlet performance.
- ✓App Functionality — Device information to support authentication and ensure secure access.
4Data Storage and Security
Secure Token Storage
Authentication tokens are stored securely using Expo Secure Store (OS-level secure storage) on your device.
Encrypted Local Storage
Session and application data are stored locally using encrypted on-device storage (MMKV).
Encrypted Transit
Data transmitted between the App and our servers is encrypted in transit using HTTPS/TLS.
Organizational Measures
Appropriate technical and organizational measures protect your personal data against unauthorized access, alteration, disclosure, or destruction.
5Data Sharing and Disclosure
We do not sell your personal information to third parties. We may share your information in the following limited circumstances:
- Service Providers — With trusted third-party service providers who assist in operating our services (e.g., cloud hosting, AI image analysis), subject to confidentiality obligations.
- Business Partners — With the brand or retail partners for whom the brand promoter activities are conducted, limited to operational data necessary for performance reporting.
- Legal Obligations — When required by law, regulation, legal process, or governmental request.
- Business Transfers — In connection with a merger, acquisition, or sale of assets, your data may be transferred as part of that transaction.
6Permissions
The App requests the following device permissions:
To capture selfie photos for identity verification and stock shelf photos for reporting and AI analysis.
To verify your physical presence at the assigned retail outlet.
These permissions are requested only when needed and are not accessed in the background.
7Data Retention
- Personal data and records are retained for as long as necessary to fulfill the purposes described in this policy, or as required by applicable laws and regulations.
- Attendance, stock reporting, and engagement data are retained for operational and auditing purposes.
- You may request deletion of your account and associated data by contacting us (see Section 12).
8Children's Privacy
The App is not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If we become aware that we have collected data from a child under 18, we will take steps to delete that information promptly.
9Your Rights
Depending on your jurisdiction, you may have the following rights regarding your personal data:
Request a copy of the personal data we hold about you.
Request correction of inaccurate or incomplete data.
Request deletion of your personal data, subject to legal retention requirements.
Request restriction of processing of your data in certain circumstances.
Request transfer of your data in a structured, commonly used format.
Object to the processing of your data for certain purposes.
To exercise any of these rights, please contact us using the details in Section 12.
10Third-Party Services
The App may use the following third-party services:
- Expo / React Native — App framework and development platform.
- AI/ML Image Analysis Services — For automated stock image analysis and planogram compliance scoring.
These third-party services have their own privacy policies governing the use of your information.
11Changes to This Privacy Policy
We may update this Privacy Policy from time to time. When we make changes, we will update the "Last Updated" date at the top of this policy. We encourage you to review this policy periodically. Continued use of the App after changes constitutes acceptance of the updated policy.
12Contact Us
For questions or concerns about this Privacy Policy or data handling practices, please contact us:
13Consent
By using the Connect+_DAIA application, you consent to the collection and use of your information as described in this Privacy Policy.