What PulseID is

PulseID is software used by bars, clubs, and other age-restricted venues to scan the PDF417 barcode on the back of a driver's license at the door. It verifies your age against the venue's posted door policy and helps the venue keep its premises safe.

What we collect when you're scanned

• The PDF417 barcode data from your ID (name, date of birth, license number, issuer, expiration date).
• A single still photograph of the front of your ID, compressed to a small image.
• Metadata about the scan: which venue, which staff member, the timestamp.

We do not collect or store: facial recognition templates, fingerprints, your home address beyond what's printed on your ID, or any information from your phone.

Why we collect it

• To verify you meet the venue's minimum entry age and minimum drinking age.
• To detect tampered or forged IDs by comparing the front of the ID to the barcode on the back.
• To enforce the venue's flag list (warnings, bans, and trespass orders specific to that venue).
• To produce an audit trail the venue can show to law enforcement or regulators if needed.

Who can see your data

Only staff at the specific venue where you were scanned can see your scan and your venue flag list. PulseTech operators (the company that runs the service) can access your data to provide support or comply with legal requests; every such access is audit-logged.

We never sell your data, and we never share it with advertisers or third parties.

How long we keep your data

Each venue sets its own retention period (default 30 days for scans and 1 year for flags). Scans older than the retention period are deleted automatically by a daily cleanup job, including the front-of-ID image, unless the scan is tied to an active flag at that venue. Deletions are audit-logged.

Your rights under Minnesota MCDPA

As a Minnesota consumer, the Minnesota Consumer Data Privacy Act (Minn. Stat. Ch. 325M) gives you the right to:

• Know what data we have about you and obtain a copy.
• Correct inaccurate data.
• Delete your data.
• Opt out of automated decision-making with legal effect (e.g. age-gate denials).

To exercise any of these rights, email [email protected] with the venue name, the approximate date/time of the scan, and (if you have it) the last four characters of the license number scanned. We will respond within 45 days as required by MCDPA.

Security

Photos and scan records are stored on PulseTech's server with filesystem-level access controls. The server uses HTTPS for all network traffic and bcrypt for password hashes. At-rest encryption of stored photos is on our roadmap for the next release.

Contact

Questions: [email protected].