What is the severity of this clause?

ConductAtlas classifies this Biometric Data Collection for Custom AI Avatars clause as high severity. Severity reflects the magnitude of rights affected, the breadth of users impacted, and the degree of discretion the platform retains.

Biometric Data Collection for Custom AI Avatars — Synthesia

Share 𝕏 Share in Share 🔒 PDF

Recent governance activity Synthesia recorded 2 documented changes in the last 30 days.

Start monitoring updates

Monitor governance changes for Synthesia Create a free account to receive the weekly governance digest and monitor one platform for governance changes.

Create free account No credit card required.

ⓘ

This analysis describes what Synthesia's agreement states, permits, or reserves. It does not constitute a legal determination about enforceability. Regulatory applicability and practical outcomes may vary by jurisdiction, enforcement context, and individual circumstances. Read our methodology

ConductAtlas Analysis

Why it matters (compliance & governance perspective)

The clause establishes the operational basis for biometric data collection and specifies retention tied to account status rather than a defined time period, meaning data persistence extends as long as the account remains active. This framework enables ongoing avatar regeneration and algorithmic improvement features.

Consumer impact (what this means for users)

Users who create custom avatars consent to collection and processing of facial likeness and voice recordings under these terms. The biometric data remains available to the service provider throughout the account lifecycle for avatar-related functions, absent explicit deletion or account termination.

How other platforms handle this

Paramount+ Medium

"By clicking 'Next', you are indicating that you have read and agree to the TERMS OF USE AND PRIVACY POLICY"

OpenAI Medium

We automatically collect certain information from your device, including information about your web browser, IP address, time zone, and some of the cookies that are installed on your device. Additionally, as you browse the Service, we collect information about the individual web pages or products th...

Microsoft Azure Medium

Location data. Data about your device's location, which can be either precise or imprecise. For example, we collect location data using Global Navigation Satellite System (GNSS) (e.g., GPS) and data about nearby cell towers and Wi-Fi hotspots. Location can also be inferred from a device's IP address...

See all platforms with this clause type →

Monitoring

Synthesia has changed this document before.

Receive same-day alerts, structured change summaries, and monitoring for up to 25 platforms.

Start Monitor free trial Or create a free account →

▸ View Original Clause Language DOCUMENT RECORD

"
When you create a custom AI avatar, we collect and process recordings of your facial likeness and voice. This data is used to generate your personalised AI avatar and may be retained for the duration of your account to enable avatar regeneration and improvement.

— Excerpt from Synthesia's Synthesia Privacy Policy

Applicable regulations

EU AI Act

European Union

California AB 2013 AI Training Data Transparency

US-CA

CCPA/CPRA

California, USA

Connecticut Data Privacy Act Amendments

United States Federal

GDPR

European Union

Indiana Consumer Data Protection Act

US-IN

Kentucky Consumer Data Protection Act

US-KY

Universal Opt-Out Mechanism Expansion 2026

Provision details

Document information

Document

Synthesia Privacy Policy

Entity

Synthesia

Document last updated

May 5, 2026

Tracking information

First tracked

April 30, 2026

Last verified

May 10, 2026

Record ID

CA-P-004283

Document ID

CA-D-00470

Evidence Provenance

Source URL

https://www.synthesia.io/privacy-policy

Wayback Machine

View archived versions →

Content hash (SHA-256)

7648d9071447f69ed848238281e6ab982ee2d650c8e20eb74c961b356314a183

Analysis generated

April 30, 2026 07:49 UTC

Methodology

summarize_document-v8

Evidence

✓ Snapshot stored ✓ Hash verified

Citation Record

Entity: Synthesia
Document: Synthesia Privacy Policy
Record ID: CA-P-004283
Captured: 2026-04-30 07:49:32 UTC
SHA-256: 7648d9071447f69e…
URL: https://conductatlas.com/platform/synthesia/synthesia-privacy-policy/biometric-data-collection-for-custom-ai-avatars/
Accessed: June 18, 2026

Permanent archival reference. Stable identifier suitable for legal filings, compliance documentation, and research citation.

Classification

Severity

High

Other risks in this policy

Personal Likeness and Voice Data for AI Avatar Creation high
Dual Role as Data Controller and Data Processor medium
Data Subject Rights and Exercise Process medium
Cross-Border Data Transfers medium
Cookies and Tracking Technologies medium
Data Retention medium

Related Analysis

Netflix Updated Terms Authorize Voice Data Collection: April 2026
Netflix updated its Privacy Statement on April 18, 2026, disclosing voice recording collection and expanded household ad profiling for the first time.
What Google Actually Knows About You
Google's Privacy Policy covers Search, Gmail, YouTube, Maps, and every site running Google Analytics. Here is what it actually authorizes.

Compliance Governance Intelligence

Need to monitor specific governance provisions?

Compliance includes provision-level monitoring, governance timelines, regulatory mapping, and audit-ready analysis.

Arbitration clauses AI governance Data rights Indemnification Retention policies

Start Compliance free trial

Or start with Monitor →

Built from archived source documents, structured governance mappings, and historical version tracking.

Frequently Asked Questions

What does Synthesia's Biometric Data Collection for Custom AI Avatars clause do?

How does this clause affect you?

Is ConductAtlas affiliated with Synthesia?

No. ConductAtlas is an independent monitoring service. We are not affiliated with, endorsed by, or sponsored by Synthesia.