Biometric Data Retention & Destruction Policy

1. Overview

Grotek, Inc. (“Diada,” “we,” “our”) collects biometric data in the form of voice recordings and derived voiceprints (voice models) when users create a Voice Persona. This policy describes our practices for retaining and destroying biometric data in compliance with applicable law, including the Illinois Biometric Information Privacy Act (740 ILCS 14).

2. Types of Biometric Data Collected

• Voice recordings: audio files recorded by the user during Voice Persona creation.
• Voiceprints / voice models: digital representations of vocal characteristics derived from recordings, created by our third-party provider ElevenLabs Inc.
• Consent records: timestamp of when the user provided explicit biometric consent.

3. Retention Schedule

Voice Models are retained for the duration of the user's account or until the user requests deletion, whichever comes first. Consent records (timestamp of consent) are retained for the duration of the user's account.

4. Destruction Schedule

Upon user-initiated deletion of their Voice Persona, the Voice Model is immediately deleted from ElevenLabs via API call. Internal records are fully purged within 30 days. Upon account deletion, all biometric data is destroyed within 30 days.

In all cases, biometric data is destroyed when the initial purpose for collecting it has been satisfied, or within 3 years of the individual's last login to the Diada application, whichever comes first.

In the event Grotek, Inc. ceases operations, all biometric data will be destroyed within 30 days of cessation.

5. Destruction Method

Digital deletion from all storage systems, databases, and third-party services. Deletion from ElevenLabs is executed via their API and confirmed through automated processes.

6. Contact

For questions about your biometric data, contact us at privacy@diada.app.

Grotek, Inc.
New York, NY, USA

Policy version: 1.0 — Last reviewed: March 13, 2026