undefined | Better HN

0 pointsnightpool5y ago0 comments

This is only about the specific image processing Stripe does to match your selfie with your ID document. The rest of the information on the document—which is what the GP comment was asking about—is retained for 3 years. Referencing the 48 hour retention period instead of the 3 year one is very misleading in this case.

0 comments

2 comments · 1 top-level

edwinwee5y ago· 1 in thread

Since we are storing these IDs on behalf of businesses using Identity, we need to retain non-biometric information for a period of time to support their use cases.

For example: KYC is a core use case for identity, which requires us to retain ID information for audit purposes.

For businesses who don’t need to keep the ID for as long, we provide a deletion API that lets them automatically delete the IDs from our system.

nightpoolOP5y ago

Yes, I agree that Stripe's policy makes sense here. But your original comment was misleading, in that it implied the information contained on your ID card was deleted after 48 hours. (It looks like you may have since edited it to clarify that you were talking about biometric signals? Maybe you haven't edited it, but it was definitely unclear enough that I, like the other responders, was confused.)

j / k navigate · click thread line to collapse