GDPR-related selfie retention questions

General
1

I want to use RPM in custom VR experiences I am building for my employer. However, the legal team has some questions they want answered before I can start using RPM fully.

As part of our efforts to comply with GDPR regulations, we have a few questions that we hope you can assist us with:

  1. In section 7.2 of your privacy policy ([Ready Player Me - Privacy Policy)] it is stated that the face encodings generated are deleted, but the selfie is retained. Could you please clarify whether this selfie is used for any model improvement purposes?
  2. In section 4.2, it is mentioned that we can submit a statement to prevent the use of our personal data for improving the platform and the avatar generation quality. Does this statement also apply to the selfies, and if so, can we request that this image not be retained?
  3. Can you provide a general overview of the AI technology used to generate the Avatar?

We appreciate your assistance and look forward to your response.

I tried raising tickets at Jira Service Management, but was directed here in an automatic email reply.

1 Like
2

Hey @bendik.tiltnes,

Thank you for the interest and welcome to the forums!

  1. We retain the selfie to enable us to create new avatars for the same user and serve them in various partner applications. If we did not store the selfie, the end user would have to take a new photo each time they edit their avatar.
  2. This relates to improving avatar generation quality in terms of better visual fidelity, faster processing, and additional avatar styles. We do not use retained images for model improvement.
  3. This is proprietary information that we cannot share at this time.

Best regards,
Georg

3

Hello Georg_RPM,

Thanks for getting back to me. I finally got word back form our Legal department. They wonder what these “various partner applications” are. Could you please elaborate?