authID Inc. Privacy Policy

Privacy Policy
Effective January 3, 2023

authID is committed to respecting and protecting the privacy of its customers and the users of its products and services. At the core of authID’s mission is our goal of providing secure biometric and multi-factor identity verification and authorization solutions, to combat identity theft and fraud in a wide variety of electronic transactions. This statement of our Privacy Policy (“Privacy Notice”) is intended to give you an understanding of how authID protects the privacy of your personal information and about our authID Software, our Services and our website (each as defined below or in our Terms and Conditions of Service). The authID Software and Services are made available to our customers (“Customer”) for use by their employees, members, or people using our Customers’ services. Our Services will also be subject to your agreement with the third party Customer which may be your employer, membership organization or business from which you are receiving another service and which Customer requests, or requires you to use authID Services.Those Customers will have their own privacy policies, for which authID is not responsible and you should review those policies as well, in order to gain a fuller understanding of how your personal information is collected, used and disclosed.

In this Privacy Notice “authID” and “we” refers to authID Inc. and its subsidiary companies who provide or assist in the provision of our software, interfaces, applications, system, or database which are provided by authID and which are accessible by any means such as an Internet browser, desktop application or mobile device (collectively referred to as the “authID Software”) and our identity authentication and verification services including Verified™, Proof™ and Human Factor Authentication™ or HFA™(“Services”) and operate our websites including www.authid.ai and investors.authid.ai (the “Site”).

The following statements inform you of authID’s policies regarding the collection, use and disclosure of Personal Information (as defined below) authID receives from or relating to persons using or accessing the authID Software, Services and the Site (each such person “You” or “User”, whether or not capitalized). By using the authID Software, the Services or the Site, You agree to the collection, use and disclosure of your Personal Information, in accordance with this Privacy Notice.

Information Collection and Use
While using the Site, or applying to use our Services, authID may ask you to provide it with certain personally identifiable information that can be used to contact or identify you. Personally identifiable information may include, but is not limited to, your name, e-mail address, telephone number and postal address and other information which may be contained in a government issued identity document. When registering with us to use our Services you will be asked to provide an email address or telephone number and a photograph (if you are using a facial matching feature of the authID Software). In certain cases, we may also receive from the Customer which is providing their services to you, your photograph and other personal information which you have provided to such Customer, for authID to contact you and to provide the Services. (Collectively all of such personally identifiable information, other personal information and biometric information is referred to as “Personal Information”).

authID uses your Personal Information for providing the Services to our Customers, providing you with information about authID, its products and services and for providing, maintaining and improving the Site, the authID Software and the Services. authID may use your Personal Information to contact you with marketing or promotional materials.

AuthID Software & Services
authID uses your Personal Information to operate the AuthID Software and to provide the Services. To provide the Services we may receive and transmit certain Personal Information to the Customers with whom you have authorized us to work, when registering for any Service and using any authID Software. When you use AuthID Software, your phone number, your photograph (if you are using a facial matching feature of the authID Software) and certain unique identifiers for your device are sent to authID to allow authID and others to provide Services. When you approve (or decline) a transaction, which is presented to you by the AuthID Software, you are consenting to sending to authID biometric and other information for such purpose (depending on your authID account set-up) and consenting to authID sending a message to the Customer that is providing the relevant services, which will include information about you, which is necessary to authenticate your choice. When you use our passwordless authentication service, Human Factor Authentication, once your identity is verified we set a FIDO2 compliant cryptographic key on your device, which is used in the future to automatically authenticate your device and tie it to your identity, so that we can confirm to the Customer that it is you who are accessing their service.

Proof Information.
When you use the Proof Service, in order to provide proof of your identity to a third-party Customer, you will enable the transmission to authID of additional personal information about you, in order to provide you with the Service. Such information may include (but is not limited to) your first and last name, your address, your nationality or residence status and the nature and number of your identification document. In addition, the Proof Service will require you to provide a live picture and associated facial biometrics, for the purpose of matching such picture to the picture on the identification document. (All such information collected from the identification document and the live picture is collectively referred to as “Proof Information”). By using the Proof Service, you consent to the collection and processing of the Proof Information by authID and the transmission of the Proof Information to the third-party Customer that requested you to provide such Information and, where applicable, the provider of a Third-Party Service( as detailed below). authID does not store or process Proof Information once the transfer to the Customer has been completed and therefore the storage and use of the Proof Information will be governed by the Privacy Policy of the Customer to whom you authorized authID to transfer the Proof Information. You should check with the Customer what their Privacy Policy is with respect to the Proof Information.

Third-Party Materials.
In addition to the information referenced and Proof Information, when a Customer has contracted authID to use a Third-Party Service, in order to provide additional verification of your identity to that Customer, or to comply with applicable “know your client” anti-money laundering, or sanctions regulations, you will authorize the transmission of Personal Information as follows:

  1. by authID to the provider of the Third-Party Service of some or all of your Proof Information sufficient to provide the Third-Party Service; and
  2. by the provider of the Third Party Services to authID of the Third Party Materials which may contain additonal personal information about You; and
  3. by authID to the Customer of the Third-Party Materials received by authID which may contain additional personal information about you,

in each case in order to provide you and the Customer with the Service. Such information may include (but is not limited to) your first and last name, your address, date of birth, occupation and whether you are listed on certain governmental databases (“Third-Party Materials”). authID does not store or process such Third-Party Materials once the transfer to the Customer has been completed and therefore the storage and use of the Third-Party Materials will be governed by the Privacy Policy of the Customer to whom you authorized authID to transfer the Third-Party Materials. You should check with the Customer what their Privacy Policy is with respect to the Third-Party Materials.

Personal Information Including Biometric Information
We never sell or rent your Personal Information. We never transfer any Personal Information, including without limitation biometric information, which we may collect or store to anyone other than to:

  1. one of our subsidiaries; or .
  2. the Customer who requested or required you to use authID Software or Services
  3. the provider of Third-Party Services

Other Uses of Information
We are a multinational business headquartered in the United States, with subsidiaries and affiliates in various countries around the world. Your Personal Information may be disclosed to recipients located outside of your country, including our global subsidiaries and affiliates. We do not make a practice of selling, sharing, trading or renting your Personal Information to others in ways different from what is disclosed within this policy, agreed to contractually by our Customers, or the users of our Services, or otherwise with their permission.

We may use certain information we gather from your use of our Site, AuthID Software, authID Software and Services to generate de-identified or aggregated information, from which Personal Information has been removed. De-identified or aggregated information does not identify you in any personal way and is not subject to any of the restrictions in this Privacy Notice and we may use it as we consider appropriate.

Log Data
Like many site operators, authID collects information that your browser sends whenever you visit the Site (“Log Data”). This Log Data may include information such as your computer’s or other device’s Internet Protocol (“IP”) address, browser type, browser version, the pages of the Site that you visit, the time and date of your visit, the time spent on those pages and other statistics. In addition, authID may use third- party services such as Google Analytics provided by Google, Inc. (“Google”) that collect, monitor and analyze such activity. Google Analytics uses its own cookies to help authID analyze how you and other users use this website. The information generated by the cookie about your use of this website (which may include your IP address, the internet browser and language you use, preferences, the date and hour of your access to the web page and the websites you access after visiting this website) will be transmitted to and stored by Google on servers in the United States. Google will use this information for evaluating your use of this website, compiling reports on website activity for website operators and providing other services relating to website activity and internet usage. By using this website, you consent to the processing of data about you by Google in the manner and for the purposes set out above and in Google’s Privacy Policy.

To opt out of being tracked by Google Analytics, go to https://tools.google.com/dlpage/gaoptout and to find out more about Google’s Privacy Policy go to https://policies.google.com/privacy?hl=en

Cookies
Like many sites, authID uses “cookies” to collect information. You can instruct your browser to refuse all cookies or to indicate when a cookie is being sent. However, if you do not accept cookies, you may not be able to use some portions of the Site.

A “cookie” is a text file that websites send to a visitor’s computer or other internet-connected device to uniquely identify the visitor’s browser or to store information or settings in the browser. This website’s uses of cookies include those cookies that are strictly necessary to enable the features of the website, performance cookies to see how visitors use the website, and functionality cookies that enable the webpage to “remember” machines or devices, personalize website content and tailor user experience. In addition, cookies may be used to help us define our audience so that we can make appropriate changes to this website (“Demographics” cookies) and target advertisements to users when they are browsing this website and other websites (“Interest Reporting” cookies), in each case by reference to anonymous identifiers, not personal information.

Security
The security of your Personal Information is important to authID, and our systems are designed with security and data protection as the highest priority. We adopt physical, electronic, and procedural safeguards to protect Personal Information. For example, maintain certain databases in restricted areas; and secure the content by use of firewalls and other security methods. We also limit access to databases containing Personal Information to specifically authorized employees and agents and other parties identified in the disclosure section above. We also regularly undertake independent testing of our systems and processes to ensure compliance with our security protocols and our certificates of testing may inspected upon request. However, you should remember that no method of data transmission over the Internet, or method of electronic data storage, is 100% secure. While authID strives to use commercially reasonable means to protect your Personal Information, authID cannot guarantee its absolute security.

External Links
authID may provide links on this Site to other websites that are not under our control. In using our AuthID Software and Services you may have access to websites and services offered by Third-Parties. We do not endorse or make any warranty of any type regarding the content contained on such websites or products and services offered on those websites or by any Third-Party. We make no representation regarding your use of such websites or any Customer or other Third-Party services. Please be aware that we are not responsible for the privacy practices of our Customers, Third-Parties or the operators of other websites. We encourage our users to be aware when they leave our Site and to read the privacy statements of each website and Customer or other Third-Party that collects personal information. This policy applies solely to Personal Information collected by us. You should read any other applicable privacy and cookies policies carefully before accessing and using such other Customer or other Third-Party services and any other websites.

Changes
This Privacy Notice is effective as of the date at the top of this Privacy Notice and will remain in effect subject to any changes in its provisions in the future, which will be in effect immediately after being posted on this page. authID reserves the right to update or change this Privacy Notice at any time and thus you should check this Privacy Notice periodically. Your continued use of the Site, any AuthID Software or Services after authID posts any modifications to the Privacy Notice on this page will constitute your acknowledgment of the modifications and your consent to abide and be bound by the modified Privacy Notice.

Notice to California residents:
Individuals who reside in California and who have provided their Personal Information to authID may have additional rights and may request information regarding disclosures of this information to third parties for direct marketing purposes. Such requests must be submitted to us at the following address:

authID Inc.
Attn: Legal Department
1624 Market St. Ste 226, Unit 51767,
Denver, Colorado 80202-1559

Such requests may be made only once each calendar year. We may not respond to requests sent to addresses other than the one shown above.