Privacy Policy

Last updated: 16 April 2026

1. Who We Are

AIVerified.io is operated by LinkDaddy® LLC, 509 N Prescott Avenue, Suite B, Clearwater, Florida 33755, USA. Infrastructure Architect: Anthony James Peacock. Privacy enquiries: [email protected]

2. What Data We Collect

  • Identity data: business name, trading name, registration number, country
  • Contact data: email address, website domain
  • Technical data: IP address, browser type, session tokens
  • Verification data: domain verification records, SHA-256 hash

3. How We Use Your Data

  • To issue and maintain your AI Verified Passport
  • To verify your business domain ownership
  • To display your business in the public registry
  • To send transactional emails (passport issued, renewal reminders)
  • To detect your country and display the relevant national registry body
  • To prevent fraud and abuse of the registry

4. Legal Basis for Processing (GDPR)

  • Contract performance: processing necessary to issue and maintain your passport
  • Legitimate interest: fraud prevention, registry integrity, security

5. Data Sharing

We do not sell your data. We share only with: Cloudflare (hosting/CDN), email providers (Resend, SendGrid, Mailgun, Postmark), and the public registry (business name, domain, country, tier, and hash are publicly visible by design).

6. Data Retention

Active passport records are retained for the life of the passport plus 2 years. Expired records are retained for 7 years for audit purposes.

7. International Transfers

Data is stored on Cloudflare infrastructure in the US and EU. EU transfers use Standard Contractual Clauses. South Africa transfers comply with POPIA Section 72.

8. Your Rights

You have the right to access, correct, delete, port, and object to processing of your data. South African users may complain to the Information Regulator at inforegulator.org.za. EU users may complain to their national DPA.

9. Erasure Requests

Email [email protected] with subject "Erasure Request". We process within 30 days. Note: SHA-256 hash and timestamp are part of the immutable ledger and cannot be deleted; all PII fields will be removed.

10. POPIA Compliance (South Africa)

Responsible party: LinkDaddy® LLC. Information Officer: Anthony James Peacock ([email protected]).

11. CCPA Rights (California)

We do not sell personal information. To exercise CCPA rights, contact [email protected].

12. Cookies

We use only essential cookies. See our Cookie Policy.

13. Changes

Material changes notified by email 30 days before effect.