OUR DATA STORAGE POLICY

Assure has integrated an identity verification software via API which has been proven as a robust solution for a quick & effective means of performing the ID validation component of our business. Once completed, identity data (including document images & video capture) is stored securely on private encrypted servers by our trusted identity partner. The data handling and storage on the identity verification platform is subject to compliance with CCPA, GDPR, SOC2 type II & WCAG Accessibility Guidelines.

The data stored on the servers outlined above is maintained for 12 months and then permanently deleted.

When an Assure KYC identity verification is approved, the ID data is also backed up and stored indefinitely using Tresorit (Tresorit.com). Tresorit is a Swiss, end-to-end encrypted, zero-knowledge content collaboration platform designed to safeguard the digital valuables of individuals and organizations with the highest classification in the cloud.

Learn more about our data storage partner, Tresorit here:

This long-term data storage solution through Tresorit provides the following features & benefits:

End-to-end encryption

Using end-to-end encryption, Tresorit encrypts every file and relevant file metadata on your devices with unique, randomly generated encryption keys. These keys are never sent to our servers in an unencrypted format. Accessing files is only possible with a user’s unique decryption key.

Zero-knowledge authentication

Tresorit uses an authentication scheme in which your password never leaves your device, keeping you in control of your most confidential security information.

Swiss privacy laws

Tresorit handles data under Swiss privacy laws that provide more substantial protection than similar laws in the US or even the EU.

Compliance - ISO 27001

Tresorit has certification for compliance with ISO 27001:2013. Tresorit was audited and certified by TÜV Rheinland, an independent third-party auditor. Their compliance with this Internationally recognized standard and code of practice is evidence of their commitment to information security at every level of their organization.

OUR DATA HANDLING POLICY

In addition to the data storage policy outlined above, it is equally critical to have a robust policy and strict guidelines for data handling as well.

Assure uses GDPR guidelines as a baseline for our comprehensive and formal data handling policy. Please view the details of our comprehensive data handling policy byclick here.

DISCLAIMER

An Assure DeFi KYC verification does not guarantee the legitimacy or safety of any project or company. The actions of the project leadership team, after the KYC verification is issued, is not, in any way, under the control of Assure DeFi. As with all speculative investing, we strongly urge you to complete your own project due diligence, and invest wisely at your own risk. Assure DeFi does not accept responsibility for any losses acquired from investing in KYC verified projects.

Assure is an impartial service. We professionally verify, record and securely store the identity information and the project role of individuals completing the project verification process. Assure DeFi does not make judgments about suspected criminal activity, but they do support investigations, if fraud is suspected by investors on a verified project.
‍
In the event of suspected fraud, Assure DeFi will provide the nationality of the project KYC verified individuals, to assist investors in reporting and communicating with the appropriate enforcement authorities. If properly compelled by an appropriate law enforcement authority, and upon the approval by their independent legal counsel, Assure Defi will release a complete vaulted project verification file to that authority, and will fully assist the enforcement authorities in pursuit of those suspected of Blockchain fraud.

Identity Data Handling & Storage Policy