Privacy Policy

Last updated: November 23, 2025

1. Introduction

At KlarifyID, we take your privacy seriously. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our identity verification services. We are committed to protecting your personal data and complying with applicable data protection laws including GDPR and CCPA.

2. Information We Collect

We collect several types of information:

  • Account Information: Name, email address, company name, billing details
  • Identity Documents: Passport, driver license, national ID images and data
  • Biometric Data: Facial images, face geometry, liveness detection results
  • Device Information: IP address, device fingerprints, browser type
  • Usage Data: API calls, verification results, timestamps
  • Communications: Support tickets, email correspondence

3. How We Use Your Information

We use collected information for:

  • Providing identity verification services
  • Fraud detection and prevention
  • Account management and billing
  • Service improvement and analytics
  • Legal compliance and regulatory requirements
  • Customer support and communications
  • Security monitoring and threat detection

4. Data Processing Roles

KlarifyID acts as a data processor when providing verification services to our customers. Our customers are data controllers responsible for obtaining end-user consents and determining data processing purposes. We process data only according to customer instructions and applicable agreements.

5. Data Retention

We retain different types of data for varying periods:

  • Verification Data: Retained for up to 7 years for compliance purposes
  • Account Data: Retained while account is active plus 5 years
  • Biometric Data: Deleted after 90 days unless longer retention required
  • Log Data: Retained for 1 year for security and troubleshooting

6. Data Security

We implement comprehensive security measures:

  • AES-256 encryption for data at rest
  • TLS 1.3 for data in transit
  • Access controls and authentication
  • Regular security audits and penetration testing
  • SOC 2 Type II certification
  • ISO 27001 compliance
  • 24/7 security monitoring

7. Data Sharing and Disclosure

We may share data with:

  • Service Providers: Cloud hosting, payment processing, analytics
  • Legal Authorities: When required by law or legal process
  • Business Transfers: In connection with mergers or acquisitions
  • With Consent: When you explicitly authorize sharing

We never sell personal data to third parties.

8. International Data Transfers

We operate globally and may transfer data across borders. We use Standard Contractual Clauses and other approved mechanisms to ensure adequate protection for international transfers. Data may be processed in the United States and other jurisdictions where we or our service providers operate.

9. Your Privacy Rights

Depending on your location, you may have rights to:

  • Access your personal data
  • Correct inaccurate data
  • Delete your data
  • Object to processing
  • Restrict processing
  • Data portability
  • Withdraw consent
  • Lodge complaints with supervisory authorities

Contact privacy@klarifyid.online to exercise your rights.

10. Cookies and Tracking

We use cookies and similar technologies for:

  • Authentication and security
  • Preferences and settings
  • Analytics and performance monitoring
  • Marketing and advertising (with consent)

You can control cookies through browser settings.

11. Children's Privacy

Our services are not intended for individuals under 18 years of age. We do not knowingly collect data from children. If we learn we have collected data from a child, we will delete it promptly.

12. California Privacy Rights

California residents have additional rights under CCPA:

  • Right to know what personal information is collected
  • Right to know if personal information is sold or disclosed
  • Right to opt-out of sale of personal information
  • Right to deletion of personal information
  • Right to non-discrimination for exercising CCPA rights

13. Changes to Privacy Policy

We may update this Privacy Policy periodically. Material changes will be notified via email or service notification. The "Last updated" date at the top indicates when changes were made. Continued use after changes constitutes acceptance.

14. Contact Us

For privacy-related questions or to exercise your rights:
Email: privacy@klarifyid.online
Address: San Francisco, CA, United States
Data Protection Officer: dpo@klarifyid.online