Privacy Policy

Effective date: September 10, 2025

This Privacy Policy explains how GecorpID (“we,” “us,” or “our”) collects, uses, and shares information when you use our service for issuing and verifying verifiable PDF credentials (the “Service”). By using the Service, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

  • Account Information: Email address, tenant ID, API key (or token) and hashed credentials used to authenticate Issuers.
  • Credential Information: Metadata for issued credentials (issuer tenant ID, creation timestamp, file identifier, verification status). PDF contents remain under the Issuer’s control.
  • Usage Information: IP address, device and browser info, date/time stamps, and pages visited for security, troubleshooting, and improvement.
  • Cookies and Local Storage: Used to maintain sessions and preferences. You can control cookies in your browser; disabling may impact functionality.

2. How We Use Information

  • Provide, operate, and maintain the Service.
  • Authenticate access and manage accounts.
  • Generate and verify credentials.
  • Send updates, security alerts, and support responses.
  • Analyze usage to improve the Service and protect against abuse.
  • Comply with legal obligations and protect our rights.

3. Sharing of Information

  • Service Providers: Hosting, database, and related providers acting on our behalf under confidentiality and security obligations.
  • Legal Compliance: When required by law, regulation, legal process, or governmental request.
  • Protection of Rights: To enforce agreements or protect the rights, property, or safety of GecorpID, clients, verifiers, or others.
  • Business Transfers: In connection with a merger, acquisition, or sale of assets; we will provide notice before your information becomes subject to a different policy.
  • Aggregated Data: We may disclose aggregated or de-identified data that cannot reasonably identify you.

4. Data Retention

We retain personal information only as long as necessary to provide the Service, comply with legal obligations, resolve disputes, and enforce agreements. Credential metadata and logs may be retained for audit and security. Upon account closure or deletion request, we will delete or anonymize personal information unless retention is required by law.

5. Data Security

We use administrative, technical, and physical safeguards to protect information. However, no method of transmission or storage is 100% secure. You are responsible for maintaining the security of your login credentials.

6. International Data Transfers

GecorpID is based in Argentina and serves users worldwide. We and our providers may process data in countries outside your jurisdiction. We take steps to ensure appropriate protection consistent with applicable data protection laws.

7. Your Rights

Depending on your location, you may have rights to access, correct, update, delete, object to or restrict processing, and request portability. To exercise your rights, contact privacy@gecorpid.com. We will respond as required by law.

8. Children’s Privacy

The Service is not directed to children under 16, and we do not knowingly collect personal data from children. If we learn that a child under 16 has provided personal information, we will delete it.

9. Changes to This Policy

We may update this Privacy Policy from time to time. If we make material changes, we will post the updated policy or notify you by other appropriate means. Continued use after the effective date constitutes acceptance.

10. Contact Us

Questions about this Policy or our data practices? Contact privacy@gecorpid.com.