Join the Point Identity revolution! Limited to 100 subscribers—Reserve your spot now!

Privacy Policy

Point Identity (“we,” “our,” “us”) deeply values your privacy and is committed to protecting your personal data. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform and services. It also outlines your rights and how you can exercise them under applicable data protection laws, including the General Data Protection Regulation (GDPR) and the California Consumer Privacy Act (CCPA).

Definitions

For the purposes of this Privacy Policy, the following terms are defined as:

Personal Data: Any information relating to an identified or identifiable individual.

Contractual Data: Information necessary to fulfill a service, including but not limited to your name, date of birth, and ID document number.

Biometric Data: Unique physical characteristics used for authentication, processed securely on your device.

Data Controller: The entity that determines the purposes and means of processing personal data.

Processing: Any operation performed on personal data, such as collection, use, storage, or disclosure.

Cookies: Small text files placed on your device to track user preferences and activity.

GDPR: General Data Protection Regulation, a data protection framework in the European Union.

CCPA: California Consumer Privacy Act, a data protection law applicable in California, USA.

EEA: European Economic Area, including EU countries and certain non-EU countries.

Introduction

Point Identity is committed to protecting the privacy and security of your personal data. This Privacy Policy explains how we collect, use, and protect your information when you use our platform and services. It also provides information about your rights and how to exercise them under data protection laws such as the GDPR and CCPA.

Data Controller and Contact Information

Point Identity acts as the Data Controller for the personal data we process. If you have any questions or concerns about this Privacy Policy or our data practices, please contact our Data Protection Officer (DPO) at:

Email: privacy@pointidentity.com

Mailing Address
Point Identity SAS
21 Allée des Saules
78480 Verneuil-sur-Seine France

Types of Data Collected

We collect only the data necessary to operate, improve, and secure our platform, ensuring minimal data processing in line with our privacy commitment.

Contractual Data: I Essential information required to provide our services and comply with regulatory requirements, such as your name, phone number, address, date of birth, and ID document number.

Technical Data: Details related to your interaction with our platform, such as IP address, browser type, operating system, and other technical identifiers.

Purposes and Legal Basis for Processing

We process your contractual data for the following purposes, in accordance with applicable data protection regulations:

Identity Verification: To authenticate users and ensure secure access to our platform, based on contract fulfillment (Art. 6(1)(b) GDPR).

Service Delivery: To provide, manage, and improve our services, based on the necessity of contract performance (Art. 6(1)(b) GDPR).

Regulatory Compliance: To meet legal obligations, including anti-money laundering (AML) and know-your-customer (KYC) requirements (Art. 6(1)(c) GDPR).

Security Measures: To identify, prevent, and address fraud, unauthorized access, and other security threats, based on our legitimate interests (Art. 6(1)(f) GDPR).

Consent-Based Processing: To process data for purposes to which you have explicitly consented, such as personalized marketing communication (Art. 6(1)(a) GDPR).

CCPA Compliance: For California residents, we comply with the California Consumer Privacy Act (CCPA) by limiting data collection to service-related purposes and ensuring users can exercise their rights, including access, deletion, and opting out of the sale of personal information.

Data Sharing and Transfers

We may share your contractual data with specific parties to support service delivery and legal compliance.

Service Providers: Trusted third-party providers supporting essential services like cloud hosting and operational analytics.

Partners: Strategic collaborators we engage with, subject to your prior consent.

Authorities: Regulatory or law enforcement entities as required to comply with applicable laws.

Sensitive Data Protection:

Point Identity ensures the highest confidentiality for sensitive data, including biometric information. Our proprietary biometric technology processes and verifies data directly on users' devices, ensuring biometric data never leaves the device or is shared with servers or third parties.

International Data Transfers:

When transferring data outside the European Economic Area (EEA), we implement robust safeguards, such as Standard Contractual Clauses (SCCs) or rely on adequacy decisions to maintain data protection standards.

Data Retention

We retain your service-related data only for as long as necessary to fulfill the purposes described in this policy or as required by law. Once the retention period expires, your data will be securely deleted or anonymized.

Data Security

We implement robust technical and organizational measures to protect your contractual data from unauthorized access, alteration, disclosure, or destruction. This includes encryption, secure storage, and regular security assessments.

Your Rights

Under the GDPR and CCPA, you have the following rights:

Access: Request access to your personal data.

Rectification: Request correction of inaccurate or incomplete data.

Erasure: Request deletion of your data where applicable.

Restriction: Request the limitation of data processing.

Portability: Request data transfer to another service provider.

Objection: Object to processing based on legitimate interests or direct marketing.

Withdrawal of Consent: Withdraw your consent where processing relies on your consent.

Do Not Sell My Information (CCPA): Opt out of the sale of your personal information, if applicable.

To exercise your rights, contact us at privacy@pointidentity.com

Cookies and Tracking Technologies

We use cookies and similar technologies to enhance your experience, analyze usage, and deliver personalized content based on your preferences.

Types of Cookies:

Essential Cookies: Ensure the platform functions properly by enabling key features like authentication and secure access.

Analytical Cookies: Provide insights into usage patterns, helping us refine and improve our services.

Functional Cookies: Support enhanced user experiences by remembering your preferences and settings.

Marketing Cookies: Enable personalized advertising by analyzing your interests and browsing behavior.

Managing Cookies:

You can manage your cookie preferences through your browser settings. Disabling certain cookies may limit some functionalities, but our platform will continue to operate as much as possible.

Changes to This Privacy Policy

We may periodically update this Privacy Policy to reflect changes in our practices or legal requirements. The updated version will be posted on our website with the effective date.

Complaints

If you believe your rights under the GDPR or CCPA have been violated, you have the right to lodge a complaint with a supervisory authority, such as your local data protection authority.

Other Sites and Services

Our services may include links to third-party websites. We are not responsible for the privacy practices of these sites. We encourage you to review their privacy policies before providing personal information.

Children's Privacy

We are committed to protecting the privacy of children. In accordance with applicable laws, we do not knowingly collect or process any personal data from individuals under the age of 18. If we become aware that a user is under the age of 18, we will take immediate action to deactivate the account and remove any associated personal data.