PRIVACY POLICY

Effective Date: July 13, 2021

This privacy policy ("Policy") describes how Proof Authentication Corporation ("we", "our", "us", "Proof", or "Company") will collect and use for internal purposes only personal information of users who visit any Company websites (“Sites”), including but not limited to Proof Portal and AuthentiShare, or use Company mobile applications (“Apps”) including but not limited to Proof Investigator and Proof Consumer apps (Sites and Apps collectively are the "Service").

We reserve the right to modify this Policy at any time. We will use your personal information in a manner consistent with the Policy in effect at the time. You are responsible for periodically reviewing this Policy to check for any changes. Your continued use of our Service after we make changes to this Policy is deemed to be acceptance of those changes, so please check this Policy periodically for updates.
 
We collect information about you in a few ways.

We may collect information you provide to us for Service registration, such as your‎ name, email address, and company information.

We may use a third-party Service Provider (defined below) to automatically log information about you and your computer or mobile device, and how you use and interact with the Service. For example, when you access the Service, we may log‎ your operating system type and version,‎ phone type, browser type and‎ language,‎ mobile device ID, precise location information, and information about your use of and actions on the Service. We also collect precise location and photos captured during the use of the Service. We may use cookies or similar identifying technology to collect this information. Please visit our Cookie Policy for further information.

We may use the information we collect from and about you to (1) operate, maintain, and improve our Service; (2) monitor and analyze usage and trends and personalize and improve the Service and your experience using the Service; (3) respond to your comments and questions and provide customer service; (4) send information including confirmations, invoices, technical notices, updates, security alerts, and support and administrative messages; (5) protect, investigate, and deter against fraudulent, unauthorized, or illegal activity; and (6) provide and deliver products and services.

We do not use automatic decision-making (i.e., making decisions solely by automated means without any human involvement) or profiling (i.e., automated processing of personal information to evaluate certain things about an individual) in Services pertaining to user settings or configurations.

Where we intend to process your personal information for a purpose other than the reason it was collected, we will provide you with information regarding the process, as well as other relevant information, prior to processing.

We may share information from or about you with a governmental entity if we believe that sharing is reasonably necessary to

1.    comply with any applicable law, regulation, legal process or governmental request, including to meet national security requirements,
2.    enforce our agreements, policies and terms of service,
3.    protect the security or integrity of our products and services
4.    protect the Company, our customers or the public from harm or illegal activities, or
5.    respond to an emergency which we believe in good faith requires us to disclose information to assist in preventing the death or serious bodily injury of any person.

The Service may contain links to other third-party websites or applications. Any information you provide on those sites is subject to that third party’s privacy policy. Our Policy does not apply to such sites, and we are not responsible for the privacy and security practices and policies of those third-party sites or applications.

We have taken certain physical, administrative, and technical steps to help safeguard the information we collect from and about you. While we take steps to help ensure the integrity and security of our network and systems, we cannot guarantee our security measures.

European Economic Area and Switzerland

This section applies to those that visit our Site from the European Economic Area or Switzerland. Proof may process your personal information with your consent (e.g., when Proof processes personal information to provide goods and services you request).

On other occasions, Proof may process personal information when it needs to do this to fulfill a contract (for example, to fulfill the contractual obligations we have with our customers) or where required to do this by law.

If necessary, Proof may also process personal information when it is in Proof's legitimate interests to do this (e.g., for customer service) and when these interests are not overridden by your data protection rights. Please be aware that the personal information we collect may be transferred to and maintained on servers or databases located outside your state, province, country, or other jurisdiction, where the privacy laws may not be as protective as those in your location. We will take certain physical, administrative, and technical measures to help safeguard the information we may transfer.

You have a right to the following:

•    To request access to the personal information we hold about you;
•    To request that we rectify or erase your personal information;
•    To request that we restrict or block the processing of your personal information;
•    Under certain circumstances, to receive personal information about you that we store and transmit to another without hindrance from us, including requesting that we provide your personal information directly to another, i.e., a right to data portability; and
•    Where we previously obtained your consent, to withdraw consent to processing your personal information.
 
To exercise these rights, contact us using the Contact Information section below. Please be aware that Proof may be unable to afford these rights to you under certain circumstances, such as if we are legally prevented from doing so.
 
Additionally, you may have the right to lodge a complaint against us. To do so, contact the supervisory authority in your country of residence.

We will process and store your information only for the period necessary to achieve the purpose of the storage, or as permitted by law. The criteria used to determine the period of storage of information is the respective statutory retention period or as determined contractually with our clients. After expiration of that period, the corresponding information is routinely deleted, as long as it is no longer necessary for the fulfillment of a contract or the initiation of a contract.

Data Deletion

You have the right to request the deletion of your personal information held by Proof Authentication Corporation. To accomplish this, you must send to privacy@proofauthentication.com a Data Deletion Request; an email in which you identify your Username, which is typically an email address, or App ID, which can be found under the app settings in the latest apps.

Upon receiving the Data Deletion Request, we will delete the following information

•    User account, if provided
•    App ID as provided, or those associated to a provided user account
•    The scans and all associated metadata belonging the provided App ID or the App IDs linked to the provided user account
 
Proof Authentication Corporation will action upon a Data Deletion Request within 30 days of when it was received. We will confirm deletion of requested data as a reply to the Data Deletion Request email.

Proof Authentication Corporation may retain data pertaining to an incident of suspected fraud, counterfeiting activity, or attempts to circumvent our security technology.

Contact Information

We welcome your comments or questions about this Policy. Please direct your inquiry to Proof Authentication Corporation, in our role as data controller or data processor, to:

Proof Authentication Corporation
945 Concord St., Suite 221
Framingham, MA 01701
Email: privacy@proofauthentication.com

For visitors from the European Economic Area or Switzerland, to contact our Data Protection Officer, please contact: privacy@proofauthentication.com

We may change this Policy. If we make any changes, we will change the Last Updated date below. We also may provide additional notice, as applicable, depending on the type of change.

Last Updated: 24 April 2026