> For the complete documentation index, see [llms.txt](https://docs.sensecrypt.com/sensecrypt-eid-v3.0.6/llms.txt). Markdown versions of documentation pages are available by appending `.md` to page URLs; this page is available as [Markdown](https://docs.sensecrypt.com/sensecrypt-eid-v3.0.6/introduction/principles-of-privacy-preserving-face-verification.md). # Principles of Privacy Preserving Face Verification In the previous section we have seen how SensePrints are data structures that are privacy preserving (it cannot be determined that two SensePrints, when compared to each other, were generated from the same person's face). We have also seen how SensePrints have the property of Biometric Verifiability (given a person's face and a SensePrint, it is possible to verify that it was the same person for whom the SensePrint was generated earlier). In this section, we highlight the Privacy by Design principles that should underscore any good system. * **Unlinkability** - Given two data structures (SensePrints) alone, it should be impossible to tell if they were generated from the same data (face + metadata) or from different data. * **Irreversability** - Given a SensePrint, it should be impossible to obtain the original face that was used to generate the SensePrint. This property is typically not satisfied by traditional Face Verification systems as they offer a similarity score between two templates. This similarity score makes traditional technology susceptible to [Hill Climbing Attacks](https://www.sciencedirect.com/science/article/abs/pii/S0031320309003380). * **Revocability and Renewability** - In traditional systems, it is possible to generate only one feature vector / template from a single image. \ \ This means that your face acts as a password that can never be changed. \ \ To be revocable and renewable, your face must act as a password that can change. The ability of SenseCrypt to generate multiple SensePrints from the exact same data is what makes it revocable and renewable.\ \ If a SensePrint needs to be replaced, a new one can be generated from exactly the same image and data and such a SensePrint would be entirely different from the one being revoked. --- # Agent Instructions This documentation is published with GitBook. GitBook is the documentation platform designed so that both humans and AI agents can read, navigate, and reason over technical content effectively. Learn more at gitbook.com. ## Querying This Documentation If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question. Perform an HTTP GET request on the current page URL with the `ask` query parameter, and the optional `goal` query parameter: ``` GET https://docs.sensecrypt.com/sensecrypt-eid-v3.0.6/introduction/principles-of-privacy-preserving-face-verification.md?ask=&goal= ``` `ask` is the immediate question: it should be specific, self-contained, and written in natural language. `goal` is optional and describes the broader end goal you are ultimately trying to accomplish on behalf of the user. GitBook uses it to tailor the answer towards what is most useful for that goal. The response will contain a direct answer to the question and relevant excerpts and sources from the documentation. Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.