Last updated: February 18, 2026
When you use VerifyHQ, we collect information necessary to provide identity verification services. This includes account information (name, email, organization), API usage data, and verification data submitted through our API (documents, selfies, biometric data). Verification data is processed in accordance with applicable data protection regulations including GDPR and local African data protection laws.
We use collected data to: provide and improve our verification services, process API requests, send account notifications, generate usage analytics, ensure platform security, and comply with legal obligations. Biometric data is used solely for identity verification and is not sold to third parties.
Verification data (documents, selfies, biometric templates) is retained for the period required by applicable regulations, typically 5 years for KYC/AML compliance. You may request deletion of non-regulated data at any time through our compliance dashboard or by contacting privacy@verifyhq.com.
All data is encrypted at rest (AES-256) and in transit (TLS 1.3). Biometric templates are stored using irreversible hashing. We maintain SOC 2 Type II compliance and conduct regular third-party security audits. Our infrastructure is hosted in ISO 27001 certified data centers.
You have the right to access, rectify, delete, and port your personal data. You can exercise these rights through the VerifyHQ dashboard (Compliance section) or by contacting us at privacy@verifyhq.com. We respond to all data subject requests within 30 days.
We use essential cookies for authentication and session management. Analytics cookies are used only with your consent. You can manage cookie preferences at any time through the cookie banner or your browser settings.
For privacy-related inquiries, contact our Data Protection Officer at privacy@verifyhq.com or write to: VerifyHQ, Abidjan, Côte d'Ivoire.