Privacy Policy
Last Updated: June 11, 2025
1. Scope
This policy applies to all users of Proofinity, including website visitors, clients integrating our APIs, and individuals whose identity or documents are verified through our platform.
2. Information We Collect
a. Personal Data You Provide
- Full name
- Date of birth
- Mobile number
- Email address
- Government-issued ID numbers (e.g., Aadhaar, PAN)
- Educational or employment certificates
- Consent logs
b. Automatically Collected Data
- IP address, browser type, device information
- Timestamp of API requests
- Logs for auditing and compliance
c. Third-Party Data Sources
We may retrieve documents and ID data via authorized partners like DigiLocker, based on your explicit consent.
3. Legal Basis for Processing
- Your explicit and informed consent
- Compliance obligations (e.g., KYC, HR onboarding)
- Legitimate interests (e.g., fraud prevention, platform security)
4. How We Use Your Data
- To verify identity or documents as per your request
- To provide results to authorized partner platforms
- To audit activity and detect misuse
- To improve our API and services
5. Data Sharing
- The organization or platform that requested the verification
- Government or authorized bodies (e.g., DigiLocker APIs)
- Internal teams for support or troubleshooting
6. Data Retention
- Verified data is retained only for the duration required for its intended purpose.
- Sensitive documents (e.g., Aadhaar) are not stored, unless explicitly consented by the user.
- Audit logs may be retained for up to 7 years, per regulatory needs.
7. Your Rights
As per the Digital Personal Data Protection (DPDP) Act, 2023, you have the right to:
To exercise any of the above, contact us at team@contrivers.com.
8. Security Measures
- Data is encrypted in transit (TLS 1.3) and at rest (AES-256)
- Access is restricted via role-based access control
- All access is logged and audited
9. Children's Privacy
Proofinity does not knowingly collect personal data of individuals under the age of 18 without parental or institutional consent.
10. International Data Transfers
We do not transfer Aadhaar-linked or identity data outside India. All data is stored and processed in compliance with Indian data residency laws.
11. Changes to This Policy
We may update this policy. Changes will be notified via our website or email.
12. Contact Us
For any privacy-related queries or concerns, contact our Data Protection Officer:
Email: privacy@contrivers.com