VeriMe Privacy Policy

Last Updated: 2025-06-24

1.0 Introduction

VeriMe Cooperative (the “Cooperative”) is a limited cooperative association organized under the Colorado Uniform Limited Cooperative Association Act, C.R.S. Title 7, Article 58 (“ULCAA”) and registered in Colorado, U.S.A. The Cooperative’s business is conducted on a cooperative basis for the mutual benefit of the Cooperative’s Members.

The purpose of VeriMe is to increase trust in digital infrastructure that supports scholarship and research; supply methods and services for supporting integrity and trust in digital research contributions; and ensure trust and integrity in research contributor digital identity worldwide.

We provide individual researchers a means to create an account to manage and share their digital identity, including services to link to external accounts and to verify their identity and personhood.  As a cooperative, we welcome Members to support our governance and operations.

To deliver these services and to operate as an organization we use information that identifies and relates to individuals, in other words, personal data. 

We endeavor to be transparent about our use of personal data. We respect people’s privacy rights and recognize that transparency is an ongoing responsibility, as well as a legal requirement in countries in which we operate. Providing detailed information on how we collect and use personal data is one demonstration of our core principles and values.  This Privacy Policy (also referred to below as ‘this Policy’) is incorporated into and made part of VeriMe’s Terms of Use.

1.1 About this Policy

This Policy explains how VeriMe Cooperative (‘VeriMe’, ‘we’, ‘us’, ‘our’) collects and uses (‘processes’) your personal data (‘personal data’, ‘personal information’, ‘your data’). We describe how we store and share your personal data, and your rights and choices related to your data. 

We process personal data in electronic, digital, and, occasionally, paper / hard copy formats. This Policy applies to our personal data processing, regardless of format. 

If you have any questions, comments, complaints or requests regarding this Policy or our data collection, processing and protection practices, please contact us at privacy@verimyid.com.   

1.2 Who should read this Policy

This Policy is for individuals whose personal data we process to deliver our services and meet our mission as an organization. That is:

  • Individuals who have VeriMe Accounts

  • Visitors to our Websites, including individuals who are considering creating a VeriMe account, becoming a VeriMe Member, or seeking information about VeriMe

  • Contacts from current or prospective VeriMe Subscribers

  • Individuals attending or contributing to in-person or virtual events run by VeriMe

  • Individuals registered for our mailing lists

  • Contributors to our blogs, community discussions, working groups and committees

  • Individuals who contact us for any reason, including to request technical support

The personal data we process will vary, depending on your relationship with VeriMe. In this Policy we use the term ‘you’ to refer to all of the above but will let you know when something relates only to a specific group or groups of people

A note for VeriMe employees, contractors and job applicants: We have a separate privacy notice for people who have applied to work at VeriMe, who currently work, or have worked, for VeriMe as an employee or contractor. However, if you are, were, or have applied to be a VeriMe employee or contractor but also fall into one or more of the categories above, this Policy will apply to you as well, to the extent your personal data is collected and/or processed for one of the above purposes.

2.0 Terms

We use the following words and phrases throughout this Policy:

  • Websites: Websites at the verime.coop, verimyid.coop, and verimyid.com domains.

  • Member: An individual who has entered into a Membership Agreement with VeriMe.

  • VeriMe Account or Account: An account created by an individual as part of the VeriMe Account registration process.

  • Account Holder: The individual who controls a VeriMe Account.

  • Account Data: The data associated with a VeriMe Account, such as the account. information, related logs, and audit trail necessary to support, protect, and operate the service.

  • Private Data: Account Data that the Account Holder has given a visibility setting of “private”. 

  • Shared Data: Account Data that the Account Holder has given a visibility setting of “shared”. 

  • Subscribers: Entities that enter into a Subscriber Agreement with VeriMe.

  • Subscriber Portal: A system used by Subscribers to manage their subscriber information, and provides other functionality such as the ability to query Accounts.  Access to the Subscriber Portal is by invitation only for Subscriber administrators.

3. Our responsibilities

Our processing of personal data is subject to certain legal safeguards specified in applicable national and international data protection regulations, including but not limited to the EU and UK General Data Protection Regulation (GDPR) and US privacy laws. 

Under the GDPR, we are a ‘data controller’ for the personal data added by Account Holders and for the information we process to operate and deliver our services as described in this Policy. We also act as a data processor when VeriMe Subscriber organizations use our Subscriber Portal and APIs to either create and validate vouchers or to access shared data from Accounts.

4. Your privacy rights and choices

4.1 Privacy choices you can make as an Account Holder

Our services are designed so that VeriMe Account Holders are in control of how their Account Data appears and is shared.

If you are an Account Holder you control the visibility of all of the sharable data items in your VeriMe Account. You can change settings at any time for any shareable data item, or deactivate your Account, which will result in the deletion of almost all the data we hold about you (see Section 9 for information about the data we retain.) You can make these privacy changes directly in your Account. 

4.2 Privacy rights

Around the world, data protection laws and regulations have been put in place to give people specific rights in relation to their personal data. As a global organization, we extend the same general rights in relation to our use of your personal data regardless of your location. These rights are consistent with the GDPR and other current privacy laws around the world. We aim to interpret these rights broadly, subject to exceptions that may be present in some jurisdictions or may not apply in all circumstances.

  • Right to know and access: This right enables you to request that we confirm whether we process your personal data and, if so, receive copies of your data. You may also request information about our collection and use of your personal data, including whether we sell or share your personal information.

  • Right to request correction of personal data that we hold about you: This right enables you to request that any incomplete or inaccurate information we hold about you be corrected.

  • Right to request erasure of your personal data (also known as the ‘right to be forgotten’): This right enables you to ask us to delete or remove personal data where there is no good reason for us continuing to process it. You also have the right to ask us to delete or remove your personal data where you have exercised your right to object to processing (see below).

  • Right to object to processing of your personal data: This right applies where we are relying on a legitimate interest for using your data. You also have the right to object if we are processing your personal data for direct marketing purposes.

  • Right to request the restriction of processing of your personal data: This right enables you to ask us to suspend the processing of personal data about you, for example if you want us to establish its accuracy or the reason for processing it.

  • Right to data portability: This right enables you to request and obtain a copy of your personal data that you previously provided to us in a portable format. This right also gives you the right to request that VeriMe transmits this data directly to another data controller.

  • Right to opt out of the sale and sharing of personal data: Although we neither sell your personal information, nor share data with direct marketers, this right enables you to opt out of the processing of your personal data for the purpose of selling or sharing your personal information for cross-context behavioral advertising. 

  • Right to opt-out of the use of Personal Data for targeted advertising and profiling: Although we do not use your data for targeted advertising or profiling purposes, this right enables you to opt out of the processing of your personal data for purposes of targeted advertising or profiling in furtherance of decisions that produce legal or similarly significant effects concerning you. 

  • Right to limit use and disclosure of sensitive personal data: This right enables you to request that we limit the ways we use and disclose your sensitive personal data to those uses which are necessary for us to perform our services.

  • Right to non-discrimination: This right confirms our commitment that you are not discriminated against in the services or quality of services you receive from us for exercising your rights. We will not discriminate against you for exercising any of your rights in this section including denying goods or services, charging different prices or rates for goods or services, or providing a different level of quality of goods and services. 

  • Right to appeal: This right enables you to appeal our denial of any request you make under this section. To exercise your right to appeal, please submit an appeal request by contacting us at privacy@verimyid.com.  

4.3 How to exercise your rights

You are able to review, verify, correct and request erasure of your Account Data.  If you want to make a request in relation to any personal data we hold about you, please contact us at privacy@verimyid.com.  

5. How and when we collect your data

We obtain your personal data in the following ways:

5.1 Information you provide to us

We collect information directly from you when you:

  • Create a VeriMe Account 

  • Apply to become a Member

  • Apply on behalf of your organization to become a Subscriber Organization, or act as a contact person or administrator of a Subscriber Organization, for example when using the Subscriber Portal

  • Contact our Helpdesk or any VeriMe staff member directly

  • Sign up to our mailing lists

  • Respond to surveys, make or contribute to posts in any online chats, blogs or other public forums offered on the Websites or other platforms such as Slack, Trello or GitHub

  • Participate in our working groups, committees, or Board

  • Register to attend, speak at or otherwise contribute to a VeriMe event

5.2 Information from third parties

  • Subscriber Organizations may add new information, specifically vouchers, to your Account only if you give them permission to do so through an opt-in mechanism. You may provide this permission directly in your Account or via a link from a Subscriber service that has integrated with VeriMe.  In either case, VeriMe will contact you and ask for permission for this Subscriber Organization to deposit information into your Account.

  • A current or prospective Subscriber Organization may designate you as a contact person, administrator, director, officer, beneficial owner, controlling person or key staff member of the organization.

  • A current Member may nominate you as a potential Board Director.

  • A current Member, Subscriber Organization, or other individual or organization may nominate you for participation in a VeriMe working group or event.

5.3 Information collected from your use of the Websites 

When you use our Websites we automatically collect information (referred to as log files or log data) about how our services are used, that could potentially identify you.

5.4 Information from cookies and other tracking technologies

We use cookies and similar tracking technologies on our Websites. Our Cookie Policy describes tracking technologies used and how you can accept or reject them. You can view and change your settings at any time by logging into the VeriMe portal.

5.5 Alternate sign in accounts

When you sign in to your VeriMe Account using institutional credentials or social sign-in providers (for example with Google credentials) certain information is provided by the identity provider to enable the connection and create a persistent link to your account. 

6. The data we use and why we use it

The types of personal data we collect and the ways we use it will vary, depending on our relationship with you and your engagement with us. 

The following sections describe our uses of personal data in different scenarios that reflect the range of services we offer. We also explain our legal grounds (known as a ‘lawful basis’) for processing your data in these scenarios.

6.1 Using our Websites

When you access our Websites we collect the following information: 

  • Your IP address (which may reveal your approximate location)

  • Details about your use of the Websites, including date and time of access,

  • Logging of details about your use of the Websites, including the date and time of access and information about transactional activities that you perform on the website and in your account, for example, adding, editing, or deleting data

  • Your method of accessing the Websites

  • The type and version of the internet browser you are using

  • The type of device you are using (e.g. computer, smart phone, tablet) and operating system

  • Your screen resolution

For further information about the usage data we collect and tracking details, see our Cookie Policy.

We use the above information to help us: 

  • Ensure the transparency of VeriMe data protocols

  • Remember your settings such as language preference or interface display preferences

  • Analyze trends, track user movements around the websites and to gather demographic information about our user base as a whole

  • Monitor and record when Account information has been changed

  • Maintain information security and help identify patterns of abuse and block some spammers 

  • Provide troubleshooting and support services

Lawful basis. VeriMe has a legitimate interest in providing, updating and maintaining our services, as well as in understanding usage and protecting the security of our Websites. Our use of the above data helps us to meet the needs of our community, in our and their interests.

6.2 Creating a VeriMe Account

We use the following information to enable you to create a VeriMe Account: 

  • Name 

  • Email address(es)

You may choose to link your Account with additional external accounts, such as: 

  • Your institutional credentials or social sign-in providers

  • Your external accounts and services

  • Your mobile phone number

If you sign in to your VeriMe Account using institutional credentials or social sign-in identity providers (e.g., Google) we may also collect personal names, email addresses, and unique persistent identifiers. We will use this information to

  • Enable you to create and sign in to your VeriMe Account

  • Contact you by email with routine service messages related to or affecting your VeriMe Account.

  • Enable management of duplicate accounts

Additionally, you may choose to become a VeriMe Member, which includes providing:

  • Payment information using a third-party interface

As a VeriMe Member, you may choose to undergo additional identity verification, which includes providing a third-party service with the following information:

  • Official documents, such as a driver’s license or passport

  • Access to televideo on your phone or computer to support proof of personhood

We securely store all identifying information in an encrypted format.  We use the above information to enable you to create your VeriMe Account, verify your identity, and to:

  • Help us respond to questions or disputes about your Account 

  • Make available data held within your account that you have set to ‘Shared Data’ as yes-no proofs to requesting Subscribers.  

  • Enable you to share your identity credentials as yes-no proofs through wallets we have integrated into VeriMe services.

  • Help us operate, protect, evaluate and improve our Websites and the VeriMe features and operations generally

Detecting misuse of our services. We may use the information we collect to train machine learning models that detect patterns of abuse in VeriMe usage. We use these models, as well as manual review processes, to detect and lock VeriMe Accounts that may be in breach of our Terms of Use or otherwise contravene our policies, such as more than one Accounts for a single individual or Accounts for business, organizations, and advertising content. Locked Accounts are not accessible by anyone other than the Account Holder, VeriMe staff and our data processors. If we lock your Account, you will be notified by email. If you believe we have locked your Account erroneously, you may contact privacy@verimyid.com so that we can review your data and if appropriate, reactivate your Account.

Lawful basis. When you create a VeriMe Account we primarily rely on your consent to process the personal data associated with your Account. We also have a legitimate interest in using the information you provide to communicate with you in relation to your Account and  to help us operate, protect, evaluate and improve the provision of Verime services. If you later choose to deactivate your account we have a legitimate interest in retaining minimal data, as described in section 9 (How long we keep your data). Where our lawful basis for processing your personal data is consent, you can withdraw your consent at any time, by deactivating your account or by contacting us at privacy@verimyid.com.  

6.3 Contacting us

If you contact us for technical or non-technical support, for advice in accessing or using VeriMe services, or for any other purpose relating to our services, we will collect some or all of the following information to enable us to address your query and respond to you.

  • Your name

  • Your email address(es)

  • Your mobile phone number

We may request, or you may choose to provide, other information that is necessary and relevant to your enquiry. We may also associate your Account information (e.g., name, email address) with your enquiry. If you require technical support we may also combine information we collect directly from you with automatically-collected log data collected from your use of the Websites. 

If you contact us to exercise your data protection rights, for example to request a copy of your personal data, or if you are locked out of your VeriMe Account and wish to regain access we may also ask for proof of identity. 

Occasionally, we may use information you have provided to help us resolve the matter you have contacted us about or otherwise improve our services. 

Lawful basis. When you contact us for these purposes, we and you have a legitimate interest (and, for personal data-related requests, a possible legal obligation) in ensuring that we have adequate information to be able to support you and to resolve any issues. We also have a legitimate interest in being able to identify potential wider issues or concerns, to maintain and improve our services.

6.4 Registering for our optional mailing lists

In addition to our routine service messages, we offer electronic mailing lists, such as our blog update and member newsletter, to help our community keep up to date with VeriMe services, news, and events. To administer these mailing lists we require your name and email address.

Lawful basis. When you register for one of our optional mailing lists we rely on your consent to process the personal data you provide for this purpose, and to send any messages that constitute direct marketing.  You can withdraw your consent at any time by clicking the Unsubscribe link in any emails we send you. Withdrawing your consent will mean we will stop sending you emails from this mailing list. You can also withdraw your consent by contacting privacy@verimyid.com.  

6.5 Acting as a contact or administrator of VeriMe Subscriber Organizations

We process a limited amount of personal data about people who represent and act on behalf of current or prospective Subscriber Organizations. If you are designated as a contact person by your organization, we ask for you to set up an account on VeriMe and complete the identity proofing process. You may choose to provide additional information in the course of your working with us in these roles. When you engage with us in this way, we may also link to other information already held about you. 

Lawful basis. When you act in such a role, we require information about you to perform our contract with the organization you are representing. We also have a legitimate interest in using your data to communicate with you, to help us develop and manage the relationship between VeriMe and its Subscriber organizations. 

6.6 Registering for, attending or speaking at a VeriMe-hosted event or webinar

We host webinars, events, and meetings to provide updates on VeriMe, to explore topics of interest and promote our services, and to help us better understand the needs of our community.

Attending an event or webinar. If you attend a VeriMe-hosted event we will ask you to register and provide your name, email address, location, role and organization. If the event is in-person we may also ask you to share any dietary requirements, restrictions or allergies. In the registration form, you will be given a link to this Policy and any other relevant information about our use of your data.  Our online events are usually recorded, and if this is the case you will be informed when recording has begun and may leave the event if you object. We may use AI technologies to automatically generate captions and transcripts for our events, and to translate these into other languages. Before and during the event you may also have the opportunity to submit questions or provide your views and opinions. We will also ask you to provide feedback on the event.

Speaking and presenting at an event or webinar. If you speak or present at a VeriMe-hosted event we will also collect information about you:

  • Your name and contact information 

  • Your employer

  • Your photograph and short biography (if provided)

  • Any personal data within your presentation and associated materials

  • We may also collect information provided by attendees who evaluated the event

Lawful basis. Whether you are an attendee or a presenter, we will ask for your consent to use your data when you engage with us in these ways. We also have a legitimate interest in using your personal data to help us organize the event, facilitate your participation, to encourage engagement with the VeriMe community and to improve our services and attendee experience. If you share any health-related information with us (for example, if you tell us about allergies you may have) we will ask for your explicit consent to use this information in our event planning.

6.7 VeriMe Membership

As part of its duties as a cooperative, VeriMe will host annual nominations and elections for its governing Board, as well as other Member voting and other Member activities during the course of its operations.  If you are a Member, we will contact you to request your participation in the nominations process, to alert you of upcoming Member meetings, elections,  to provide the opportunity to provide agenda items and participate in elections, and to transact any other Member benefits or responsibilities as outlined in the Member Agreement.  We will contact you with reminders to remit your annual Member fee. We will contact you with updates to Member privileges and patronage distributions. And, we will contact you with polls to request your prioritization of new VeriMe features and functionality.  

We will use the following information to maintain lists and communicate with Members eligible to vote and receive patronage distributions:

  • Name

  • Account ID

  • Email

  • Mobile phone number

  • Membership status

We will use the following additional information for Members nominated for and elected to the Board:

  • Short biographical sketch

  • Image

  • External profile URL (optional)

Lawful basis. VeriMe bylaws state our requirements to maintain Member lists for the purposes of voting and patronage distributions. When you opt to become a VeriMe Member, wherever possible we will seek your consent to use your personal data. 

6.8 Engaging with us and the VeriMe community

You can choose to engage with us in a number of ways. You can contribute to our chat rooms, user groups and other online forums, respond to our surveys and questionnaires, participate in our Working Groups or apply to or become a Board or committee member. Subscribers may also contribute to our blogs.

In each case, the personal data you choose to provide can vary, but we will generally collect your email address, name, your role and place of work or affiliation. We may also link the information you share with us to other information we already hold about you. Otherwise, you are in control over how much or how little personal data you choose to share. 

You should be aware that any information you provide in forums or similar areas may be read, collected, and used by others who access them, and that some are publicly available and/or may be delivered by third party platform providers, such as Slack, Google and GitHub. These companies provide their own privacy information, which we advise you to read. 

Lawful basis. When you engage with us in these ways, wherever possible we will seek your consent to use your personal data. We also have a legitimate interest in using your personal data to help us facilitate this engagement, to communicate with you, to encourage involvement within the research community and to improve our services and user experience. 

7. Sharing your personal data

The circumstances in which Account Data and other personal data provided to us may be shared or made publicly available are set out in this section of the Policy, and in the Data storage and international transfers section below.  We do not otherwise share your personal data. We never sell your personal data, and we do not share it with marketers or advertisers.

7.1 Publishing and distribution of VeriMe Account Data

VeriMe is committed to giving Account Holders control over their Account Data.  We will share only data specifically marked as “Shared Data” by the Account Holder.  We may also provide log activity information on recency of Account creation and verification updates.  Account Holders will be provided a list of all data items, last date of update, as well as the specific information shared.  To ensure privacy standards, only Subscribers will be able to request access VeriMe Account data, either through the Subscriber Portal or a VeriMe Subscriber API. Access to and use of Account data is governed by our Terms of Use and Subscriber agreements.

We may also share aggregated, or summarized, usage data, or publish information based on aggregated usage data so Account Holders, Members, Subscribers, and others can understand how VeriMe Websites are being used. 

VeriMe does not undertake the responsibility to police third party uses of data, and does not otherwise limit commercial use of Shared Data by third parties and cannot control actual use despite these terms and suggestions. 

7.2 Disputes

If there is a dispute regarding data in your Account, or if you raise a dispute as a claimant, we may share your name and email address with your permission with the other party to the dispute and / or a third party mediator, so that the dispute may be resolved. The Account history (i.e., what data was deposited in your Account and by whom) may also be used for this purpose and we may ask you to provide additional evidence to support the factual accuracy of the data in your Account.  See the Terms of Use for further information on our Dispute resolution process. 

7.3 Legal reasons for sharing personal data

We may access your data if we need to defend against legal claims or in bankruptcy proceedings, or to meet any applicable law, regulation, legal process or other legal obligation. Additionally, we may share your data if we believe it is necessary to detect, investigate, and help prevent fraud or security issues with our services, or to protect the rights or safety of VeriMe, our users, staff or others. To the extent possible in the relevant situation, we will promptly provide information about any such disclosures to the relevant Account Holders.

If VeriMe is involved in a merger, acquisition, joint venture or dissolution, we will give Account Holders notice (by posting on the VeriMe Website) and the option to opt-out of the transfer, before any data are transferred or become subject to a different privacy policy.  For further information refer to our Bylaws and Researcher Member Agreement

7.5 Data Processors

Your data will be shared with third party organizations who are engaged by VeriMe to provide specific services involving the processing of personal data. These organizations are our data processors. They act on our behalf and under our instructions. The type(s) and amount of your data that we share with these data processors will depend on your relationship with us and use of our services. We have contracts in place with these data processors and they cannot do anything with your personal data unless we have instructed them to do so, or unless required by law. 

8.0 Data storage and international transfers

VeriMe’s headquarters are in the United States and this is our primary location for handling and storing your data. We have employees located in a number of countries and use a range of third party data processors who also may process personal data in different nations. As such, when you use our services we may store and otherwise process your personal data on servers located outside of the country where you originally deposited the data.

By using our Websites, mailing lists, and online chat and forums, registering for VeriMe events, participating in VeriMe committees and other groups, or otherwise giving us your personal data, you acknowledge that:

  • Your personal data may be transferred to our facilities and those of the third parties with whom we share it as described in this Policy, and 

  • Any claims of any kind that you have regarding this Policy and our processing of your personal data shall be resolved in accordance with the procedures set out in the Questions and Concerns section of this Policy.

We recognize that different countries have varying data protection laws and standards, some of which apply directly to some of our activities. We will only transfer data to countries where we are satisfied that adequate levels of protection are in place to protect that information.

8.1 Data transfers where the EU / UK GDPR applies

Where the EU or UK GDPR directly applies to personal data to be transferred to the US or another country we will ensure any potential risks have been adequately assessed and that: 

  • The destination country has been deemed to provide an adequate level of protection for personal data; or,

  • The transfer is subject to appropriate safeguards, specifically that standard data protection clauses (Standard Contractual Clauses, or SCCs) have been incorporated into an agreement between VeriMe and the other organization; or,

  • In exceptional circumstances only, one or more of the derogations set out in the GDPR can be applied. 

If you would like to know more about international data transfers affecting your personal data, please contact privacy@verimyid.com.  

8.2 VeriMe and the Data Privacy Framework (DPF) Program

As a cooperative organization, we are subject to the jurisdiction of the US Federal Trade Commission (FTC), and are eligible to participate in the EU–US Data Privacy Framework (DPF) Program, which was established in 2023 to provide US organizations with approved mechanisms for personal data transfers to the United States from the EU / EEA, the UK, and Switzerland. We self-certify with the DPF on an annual basis, and we use the above-mentioned SCCs as an appropriate safeguard for the transfer of personal data to the United States. 

8.3 Government data requests

If we are required by law, or we are served with a warrant, court order, or subpoena, we may provide your data to regulators, enforcement agents, courts and/or other government entities. To protect the privacy interests of our users, VeriMe will provide only such data as we deem necessary and lawful in the situation. To the extent allowed, we will promptly provide information about any government data requests received and accounts affected to the relevant Account Holders.

9. How long we keep your data

If you are an Account Holder, we will retain your Account Data until and unless you deactivate your Account, or as needed to provide you services, including reactivation of your Account, and to help VeriMe analyze data for our own operations. 

If you deactivate your Account, we will delete all of your Account Data other than a cryptographically hashed form of your email address(es) and other information needed to fulfill any legal obligation to keep a record of your request to be removed from our system. (Note that some residual copies of data may take a period of time before they are deleted from our active servers and may remain in our backup systems and log files.)

For all other uses of personal data as described in this Policy, we retain information in line with our Document Retention Policy, and for no longer than necessary for the purpose(s) for which we process the data.  When personal data is no longer required we ensure it is securely deleted from our systems and from the systems of our data processors, in line with our agreements with them.

We will otherwise retain and use your information as long as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

For further information on our document retention policy, please contact privacy@verimyid.com.  

10. Automated decision making and profiling

As noted in section 6.3 of this Policy, we use the information we collect about VeriMe Accounts to detect patterns of abuse and this may result in VeriMe Accounts being locked. While this activity constitutes automated processing, we will always manually review any locked Accounts upon request. If you think an Account has been wrongly locked please contact privacy@verimyid.com

11. Sensitive personal data

VeriMe does not require nor intentionally collect or process sensitive personal data, that is, criminal office or convictions data or the ‘special categories’ of data listed in the GDPR (personal data revealing racial or ethnic origin, political opinions, religious or philosophical beliefs, or trade union membership, and the processing of genetic data, biometric data for the purpose of uniquely identifying a natural person, data concerning health or data concerning a natural person’s sex life or sexual orientation). 

We may provide opportunities for your voluntary inclusion of data that falls into these categories in situations where doing so may be important for your safety or security. For example, we may offer to accept medical information about your food allergies during an event where we may be serving food. Any disclosure of sensitive personal data by those attending in-person events is purely optional and based on your consent, which you can withdraw at any time by contacting privacy@verimyid.com.  

12. Children

VeriMe provides general audience Websites and does not offer services directed to children. Should a person whom we know to be under 18 send personal data to us, we will delete that information immediately.  If you are under 18 years old, please do not share any personal data with us, even if prompted by the Websites to do so. If you think you have provided personal data to us, please ask your parent(s) or guardian(s) to notify our Helpdesk and we will delete all such information about you.

13. Confidentiality and security of your data

We are committed to protecting the confidentiality of the personal data we process and use a range of technical and organizational measures to ensure its security. If you would like to know more, or have any questions about security on our Websites, please contact privacy@verimyid.com.  

14. Questions and Concerns

If you have any questions, comments, complaints or requests regarding this Policy or our data protection practices, please contact us at privacy@verimyid.com

If you are not able to resolve your concerns through VeriMe’s internal mechanism or escalation process, arbitration as described in our Terms of Use will be your final and exclusive recourse for dispute resolution, unless otherwise provided by local data protection law, in which case you may also have recourse through your data protection authority.

15. Governing Law

This Policy is governed by and any disputes shall be resolved under the laws of the State of Colorado (United States), without giving effect to its conflict of laws principles.

16. Changes to this Policy

We may change our Policy from time to time, to reflect changes in our practices or to comply with changes in applicable law or regulatory requirements. We will post any changes to this Policy on this page and encourage you to check this page regularly to keep informed. If you would like to view our previous Privacy Policies, you can contact privacy@verimyid.com.  If, in our discretion, we think that any changes are significant, we will take additional steps to inform you where reasonably possible (for example, by posting a notice of changes on our Websites and/or by sending you an email to inform of such changes) and, where required by applicable law, to obtain your consent to maintain your Account.

17. Additional privacy information

Links to other websites and services: Our Websites may contain links to and from sites maintained by third parties. This Policy does not cover your activities on those sites, any information you may provide to those sites, or information that may be collected about you by those sites. We recommend you read the privacy notices or policies of these sites.