This Privacy Policy describes your privacy rights regarding BriteVerify’s (“We”, “Our”, “Us”) collection, use, storage, sharing and protection of your personal information. It applies to the BriteVerify website www.briteverify.com, BriteVerify Platform/Service and all related sites, applications, services and tools regardless of how you access or use them. It also describes your choices regarding use, access and correction of your personal information. The use of information collected through our service shall be limited to the purpose of providing the service for which the Client has engaged BriteVerify.

TRUSTe Privacy Certification

When carrying out any of the above activities, we:

  • • Conduct an independent risk assessment into whether the proposed data transfer will provide an adequate level of protection for the rights of the data subjects; and
  • • If we do not find that there is an adequate level of protection, we put into place adequate safeguards to protect the rights of the data subjects. This is ensured by way of a contractual agreement with any applicable data controller or data processor to whom data is transferred, where possible using the European Commission model clauses in respect of transfers from controller to controller and in respect of transfers from controller to processor.

We only engage in transfers of personal data outside the EEA to a country whose data protection laws have not been approved by the European Commission as providing adequate protection for data subjects’ rights if there is an adequate level of protection for the rights of data subjects. In assessing adequacy, we consider general adequacy criteria and legal adequacy criteria. If our assessment of the ‘general adequacy criteria’ reveals that, in the particular circumstances of the case, the risk to the rights of data subjects associated with the transfer is low, we may consider that an exhaustive analysis of the ‘legal adequacy criteria’ may not be necessary. If a high risk is identified (for example, in the event that the data is particularly sensitive) then a more comprehensive investigation of the legal adequacy criteria would be carried out. The criteria we consider in making the assessment is as set out below:

General Adequacy Criteria:

  • • The nature of the personal data;
  • • The purposes for which the data is intended to be processed;
  • • The period during which the data is intended to be processed;
  • • The country or territory of origin of the information contained the data;
  • • The country or territory of the final destination of the information;
  • • Any security measures taken in respect of the data in the country or territory of destination.

Legal Adequacy Criteria:

  • • The law in force in the country or territory in question;
  • • The international obligation of the recipient country or territory;
  • • The rules or codes of practice which govern the processing of personal data in the third country.

If adequacy is established by way of our assessment, then we would proceed with the transfer of the data. If adequacy is not established by way of our assessment, then we would seek to enter into a contractual relationship with the data controller or data processor in question to ensure that the security of the data is maintained to our required standards before any transfer takes place.

General Data Protection Regulation

BriteVerify and its Parent company Origin Ads LLC understand and comply with all responsibilities outlined in the General Data Protection Regulation.  

CONTROLLER: As a Controller, BriteVerify collects information from EU residents (Data Subjects) when they create a new account on behalf of their Company with BriteVerify.  Information provided by Data Subjects during registration is used only for the purposes stated in this Privacy Policy and in BriteVerify’s Terms and Conditions.  

PROCESSOR:  As a Processor, BriteVerify accepts email addresses from Controllers for the sole purpose of providing emails verification services.  BriteVerify protects all information provided from Controllers as outlined in this Privacy Policy and BriteVerify’s Data Processing Addendum.

EU-U.S. Privacy Shield and Swiss-U.S. Privacy Shield

BriteVerify and its parent/subsidiary company Origin Ads, LLC participates in and have certified their compliance with the EU-U.S. Privacy Shield Framework and the Swiss-U.S. Privacy Shield Framework.  We are committed to subjecting all personal data received from European Union (EU) member countries and Switzerland, respectively, in reliance on each Privacy Shield Framework, to the Framework’s applicable Principles.  To learn more about the Privacy Shield Frameworks, and to view our certification, visit the U.S. Department of Commerce’s Privacy Shield List. https://www.privacyshield.gov/list

BriteVerify is responsible for the processing of personal data it receives, under the Privacy Shield Framework, and subsequently transfers to a third party acting as an agent on its behalf.  BriteVerify complies with the Privacy Shield Principles for all onward transfers of personal data from the EU and Switzerland, including the onward transfer liability provisions.

With respect to personal data received or transferred pursuant to the Privacy Shield Framework, BriteVerify is subject to the regulatory enforcement powers of the U.S. Federal Trade Commission.  In certain situations, BriteVerify may be required to disclose personal data in response to lawful requests by public authorities, including to meet national security or law enforcement requirements.

If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider (free of charge) at https://feedback-form.truste.com/watchdog/request.

Under certain conditions, more fully described on the Privacy Shield website https://www.privacyshield.gov, you may be entitled to invoke binding arbitration when other dispute resolution procedures have been exhausted.

Collection and Use of Personal Information

Information we collect automatically:

When you visit the BriteVerify website or use BriteVerify Services, we collect information sent to us by your computer or your mobile device. The information sent to us includes the following: data about the BriteVerify pages you access, your computer IP address, statistics on page views, traffic to and from the sites, referral URL, and standard web log data and other information. We link this data to information collected about you at registration and do not share or otherwise use this information for any purpose other than what is outlined in this privacy policy.

Information you provide to us:

We will collect and store any information you enter on the BriteVerify website or provide to us in context of using our site, applications, services, or tools.

When you visit the BriteVerify website or use BriteVerify Services, we also collect information about your transactions and your activities. In addition, if you open a BriteVerify account and use BriteVerify Services, we will collect the following types of information:

  • • Contact information, such as your name, address, phone, email and other similar information.
  • • Financial information, such as credit card numbers that you link to your BriteVerify account or provide when you use BriteVerify Services.

By using BriteVerify Services you may provide contact information of your prospects or customers such as name, email address, postal address, phone number, and IP address for the express purpose of receiving data verification results from BriteVerify Services. BriteVerify claims no direct relationship with the individuals whose data it verifies nor does BriteVerify claim any ownership of any data provided for the purposes of delivering verification services. 

Briteverify collects information for our clients; if you are a customer of one of our Clients and would no longer like to be contacted by one of our Clients that use our service, please contact the client that you interact with directly.

BriteVerify may also transfer personal information to companies that help us provide our service. Transfers to subsequent third parties are covered by the provisions in this Policy regarding notice and choice and the service agreements with our Clients.

BriteVerify acknowledges that you have the right to access your personal information. BriteVerify has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct their query to the BriteVerify's Client (the data controller). If the Client requests BriteVerify to remove the data, we will respond to their request within a reasonable timeframe.

BriteVerify agrees to maintain as confidential all data provided by Users for the purposes of verification, to not disclose data to anyone within our organization without a need to receive it for the specific purpose for which it is being disclosed to us, and to not disclose this data to any 3 rd party except when the 3rd party is an approved contractor helping to deliver BriteVerify Services or when required to do so by law. In no event shall this data be used to contact any names, email addresses, postal addresses, or phone numbers provided to us for verification.

Information Learned During the Verification Process

BriteVerify may collect and retain any information learned as a part of the verification process and will use this information to improve system performance, provide fraud management services, and protect users of BriteVerify Services.

  • • Authentication and Fraud Detection: In order to help protect you from fraud and misuse of your personal information, we may collect information about you and your interactions with our website or BriteVerify Services. We may also evaluate your computer, mobile phone or other access device to identify any malicious software or activity.
  • • Mobile Privacy: We may offer you the ability to connect with our sites, or use of our applications, services, and tools using a mobile device, either through a mobile application or via a mobile optimized website. The provisions of this Privacy Policy apply to all such mobile access and use of mobile devices. This Privacy Policy will be referenced by all such mobile applications or mobile optimized websites.

When you use our Mobile Applications, or access one of our mobile optimized sites, we may receive information about your location and your mobile device, including a unique identifier for your device.  Most mobile devices allow you to control or disable location services in the device's settings menu. If you have questions about how to disable your device's location services, we recommend you contact your mobile service carrier or the manufacture of your particular device.

Information Sharing

We may provide your personal information to companies that provide services to help us with our business activities such as fulfilling your order or offering customer service. The companies listed below are authorized to use your personal information only as necessary to provide these services to us.

Amazon Web Services (“AWS”) provides cloud hosting solutions to BriteVerify.  BriteVerify stores information on Data Subjects obtained during registration (as a Controller) and information on Data Subjects supplied by Controllers (as a Processor) in AWS facilities.  AWS is considered a sub-processor of BriteVerify’s and, as such, BriteVerify has a Data Processing Addendum (DPA) outlining AWS’ obligations to BriteVerify in place with AWS.  Information on AWS’ DPA is available for review here.

Braintree by PayPal (“Braintree”) is responsible for collecting and securely storing credit card or debit card information supplied by BriteVerify customers during registration.  BriteVerify does not have access to actual credit card information as this information is stored securely in Braintree’s gateway. Braintree addresses their obligations as a processor of credit card information in their EU Merchant Terms listed here

Intercom is used by BriteVerify to provide real-time support services through briteverify.com and the BriteVerify app.  In order to provide these services, BriteVerify shares information from its Data Subjects (as a Controller) with Intercom.  Intercom is considered a processor of BriteVerify’s and a copy if Intercom’s DPA with BriteVerify is available upon request by writing to security@briteverify.com.

Legal Disclaimer

We may also disclose your personal information as required by law, such as to comply with a subpoena, bankruptcy proceedings, or similar legal process when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, investigate fraud, or respond to a government request.

If BriteVerify is involved in a merger, acquisition, or sale of all or a portion of its assets, you will be notified via email and/or a prominent notice on our website, of any change in ownership, uses of your personal information, and choices you may have regarding your personal information. We may also disclose your personal information to any other third party with your prior consent.

Access, Change, or Delete Your Personal Information

Upon request BriteVerify will provide you with information about whether we hold any of your personal information. You can review, or edit or delete your personal information by logging into your account at https://app.briteverify.com/users/sign_in and clicking on the Account Settings link. You can also close your account by sending an email request to accounts@briteverify.com or by calling +1.855.862.7483.  If you request that we close your account we will disable your account in our database but will not fully delete your personal information until we have collected any fees owed, resolved  disputes, assisted with any investigations, or taken other actions as required or permitted by law. We will respond to any of these requests within a reasonable timeframe.

BriteVerify acknowledges that you have the right to access your personal information.  BriteVerify has no direct relationship with the individuals whose personal data it processes. An individual who seeks access, or who seeks to correct, amend, or delete inaccurate data should direct their query to the BriteVerify’s Client (the data controller). If requested to remove data we will respond within a reasonable timeframe.

Data Retention

We will retain your information for as long as your account is active or as needed to provide you services. We will retain and use your information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

BriteVerify will retain personal data we process on behalf of our Clients for as long as needed to provide services to our Client. BriteVerify will retain and use this personal information as necessary to comply with our legal obligations, resolve disputes, and enforce our agreements.

How We Protect Your Information

Registration Information:

We implement a variety of security measures to maintain the safety of your personal information when you register for a BriteVerify account or supply us with data for verification purposes. All credit card information provided during sign-up is transmitted via Transport Layer Security (TLS) technology and encrypted in our Payment gateway providers' database. This information is only accessible by those with special access rights to such systems. Anyone with this access is required to keep this information confidential. Any credit card information supplied will be kept on file in order to process future payments for BV Services rendered. Credit card information may be deleted at any time should you choose to stop using BV Services by sending a written request to accounts@briteverify.com.

Data Supplied for Verification:

You may also supply data to BriteVerify as a part of the verification process. Information about how we keep this information secure in both transit and in rest will be sent upon request. Please send an email to security@briteverify.com to request a copy of BriteVerify's Data Security document.

Email Communications

BriteVerify respects your Inbox and will not abuse the email address provided during signup. Email messages will be sent to you for the following purposes:

  • • To more effectively respond to your customer service requests and support needs;
  • • To communicate changes to BV products, terms, and policies;
  • • To send invoices or payment notifications for BV Services rendered; or
  • • To provide information about changes to your account status.

Tracking Technologies

A cookie is a small text file that is stored on a user's computer for record-keeping purposes. We use cookies on this site. We do not link the information we store in cookies to any personally identifiable information you submit while on our site or on our Services.

We use session ID cookies and persistent cookies on our Site and on our platform. We use session cookies to make it easier for you to navigate our site. A session ID cookie expires when you close your browser. A persistent cookie remains on your hard drive for an extended period of time. You can remove persistent cookies by following directions provided in your Internet browser's 'help' file.

We set a persistent cookie to store your passwords so you don't have to enter it more than once. Persistent cookies also enable us to track and target the interests of our users to enhance the experience on our site.

Technologies such as: cookies or similar technologies are used by BriteVerify and our analytics or service providers, Google Analytics and Intercom.io. These technologies are used in analyzing trends, administering the site, tracking users' movements around the site and to gather demographic information about our user base as a whole. We may receive reports based on the use of these technologies by these companies on an individual as well as aggregated basis. We do not share or otherwise use this information for any purpose other than what is outlined in this privacy policy.

Social Media Widgets

Our website includes Social Media Features, such as the Facebook Like button, and Widgets, such as the Share This button or interactive mini-programs that run on our website. These Features may collect your Internet protocol address, which page you are visiting on our website, and may set a cookie to enable the Feature to function properly. Social Media Features and Widgets are either hosted by a third party or hosted directly on our website. Your interactions with these Features are governed by the privacy statement of the company providing it.

Changes to This Privacy Policy

We may update this Privacy Policy to reflect changes to our information practices. If we make any material changes we will notify you or our Client by email (sent to the e-mail address specified in your account) or by means of a notice on this website prior to the change becoming effective. We encourage you to periodically review this page for the latest information on our privacy practices. This Privacy Policy was last updated on the 25th of May 2018.

Contact Us About Privacy Concerns

If you have any questions or concerns about BriteVerify's Privacy Policy you can contact us by sending an email to information@briteverify.com or calling +1.855.862.7483, or mail to: 

BriteVerify, 4725 Piedmont Row Drive Suite 420, Charlotte, NC 28210.