1. Our Role: We are a Data Processor

VerifiLite ("we," "our," "us") specializes in providing KYC (Know Your Customer) verification services. It is essential to understand our legal role:

• We are the Data Processor: we process personal data on behalf of our clients.
• The Merchant is the Data Controller: The business, developer, or Web3 project (referred to as the "Merchant") that asks you to verify your identity is the Data Controller. They determine why and how your personal data is processed.
• Your Direct Relationship is with the Merchant: For any questions about how your data is used, you must contact the Merchant and refer to their privacy policy.

2. Critical Liability Notice

The Merchant who requested your verification is solely responsible for your personal data. VerifiLite acts as a data processor on their documented instructions. You, as the end-user, acknowledge that the Merchant is liable for your data; we are not liable.

This principle applies to all our service verticals:

• For Individuals: The Merchant is liable for your data.
• For Businesses & Developers: As the Merchant, you assume full liability for the end-user data you submit and must have a lawful basis to do so.
• For Web3 Projects: Despite the decentralised nature of your project, the legal responsibility for the personal data you collect rests solely with your entity.

3. Your Consent and Our Data Retention

Your control over your data is a core principle of our service.

• Why We Need Consent: To perform verification, we require your explicit consent to process highly sensitive personal data, such as your government ID and facial image.
• Short-Term Retention Without Consent: If you do not provide consent to the Merchant for ongoing storage, we delete your verification information within 24 hours of processing.
• Retention With Consent: If you provide consent, your data will be stored securely only for the duration specified by the Merchant and in accordance with applicable laws.
• Withdrawing Consent: You can withdraw your consent at any time. However, you must contact the Merchant directly to exercise this right, as they control the data processing instructions.

4. Our Compliance Status

While our services are delivered in accordance with complaint standards and industry best practices, Verifilite is not yet legally classified as fully compliant with all applicable data protection regulations. We are committed to operating responsibly and are actively working towards full compliance. By using our services, you acknowledge this status.

5. Key Information for All Users

• Your Rights: You have rights regarding your data, including accessing, correcting, deleting, or restricting its processing. To exercise these rights, please first contact the Merchant. If you are directed to us, we will facilitate your request with the controller.
• Children's Privacy: Our services are not intended for children under 16, and we do not knowingly collect their information.
• Complaints: If you have concerns about our use of your data, please contact us immediately at https://verifilite.com/contact-us. We aim to resolve issues promptly.
• Policy Changes: We may update our policies. The latest version will always be posted on our website at https://verifilite.com/.

Acknowledgment

By using Verifilite's services, either as an end-user or as a Merchant, you acknowledge that you have read, understood, and agree to the terms outlined in this disclaimer and our full Privacy Policy.