Privacy Policy
This Privacy Policy explains how Delphi Verify collects, uses, stores, and protects information when you use our mobile app, website, and related services.
1. Who We Are
Delphi is a service for creating, signing, and verifying digital evidence certificates, including images, metadata, location data, and associated cryptographic records.
Data controller:
- Legal name: Delphi Verify
- Privacy contact email: contact@delphiverify.com
- Website: https://delphiverify.com
2. Information We Collect
We may collect the following categories of information depending on how you use Delphi.
Account Information
When you sign in or create an account, we collect information such as:
- user identifier;
- email address;
- name, when provided by your authentication provider;
- authentication information provided by Apple or Google.
We do not store your password.
Content You Create
When you create an evidence certificate, we may collect:
- images captured by you;
- certificate title and description;
- cryptographic hashes of images;
- cryptographic identifiers and device verification records required to verify certificate integrity;
- dates and times related to capture, upload, and verification.
Location
With your permission, Delphi may collect your precise location when you sign an evidence certificate. This location is used to attach geographic evidence to the certificate you create.
You can deny or revoke location permission in your device settings. Some features, such as creating a GPS-signed evidence certificate, may not work without this permission.
Camera and Photos
With your permission, Delphi accesses the camera to capture images used in evidence certificates. Delphi does not access your photo library or import images from your device gallery.
Technical Information
We may collect technical information necessary to operate, protect, and diagnose the service, such as:
- device or installation identifiers;
- technical logs;
- error information;
- IP address;
- device type, operating system, and app version;
- security and authentication events.
3. How We Use Information
We use the information we collect to:
- create and authenticate your account;
- create, store, sign, and verify evidence certificates;
- display your certificates and verification codes;
- enable public verification of certificates through a code or link;
- prevent fraud, abuse, and unauthorized use;
- maintain the security and integrity of the service;
- fix errors, improve performance, and operate our infrastructure;
- comply with legal obligations and respond to valid legal requests, where applicable.
4. Legal Bases for Processing
Where data protection laws apply, we process your data based on one or more of the following legal bases:
- performance of a contract, to provide the features you request;
- consent, when you grant permissions such as camera or location access;
- legitimate interests, for security, fraud prevention, and service improvement;
- compliance with legal obligations, where necessary.
You may withdraw device permissions at any time in your operating system settings.
5. Sharing of Information
We do not sell your personal information.
We may share information with service providers that help us operate Delphi, including:
- Firebase and Google Cloud, for authentication, database, storage, hosting, and backend functions;
- Apple, when you use Sign in with Apple;
- Google, when you use Google sign-in;
- infrastructure, security, monitoring, and technical support providers.
These providers process data according to their own policies and applicable agreements.
We may also share information when necessary to comply with the law or a valid legal order; protect the rights, safety, and integrity of Delphi, our users, or third parties; investigate abuse, fraud, or security incidents; or transfer the service in connection with a merger, acquisition, reorganization, or sale of assets, subject to applicable law.
6. Public Certificate Verification
All certificates created in Delphi may be verified through a public code or link. Depending on the certificate content, third parties with access to the code or link may be able to view information associated with the verification, such as images, metadata, time, location, and integrity results.
You should avoid including sensitive information or third-party information in certificates unless you have the appropriate authorization to do so.
7. Data Retention
We keep your information for as long as necessary to provide the service, preserve the integrity of evidence certificates, comply with legal obligations, resolve disputes, and enforce our terms.
Account data may be kept while your account is active. Evidence certificates may be retained for longer when needed for verification, auditability, security, or legal compliance.
When data is no longer needed, we may delete, anonymize, or aggregate it.
8. Account and Data Deletion
You may request deletion of your account and associated personal data through the app or by contacting us at:
- Email: contact@delphiverify.com
Before completing deletion, we may need to verify your identity. Some data may be retained where required by law, for security, fraud prevention, dispute resolution, or preservation of the integrity of evidence records already created.
Where deletion involves evidence certificates, certain technical records, hashes, public codes, or information required to preserve system integrity and auditability may be retained as permitted by applicable law.
9. Your Rights
Depending on your location, you may have rights over your personal data, including the right to:
- access the data we hold about you;
- correct inaccurate data;
- request deletion;
- request portability;
- restrict or object to certain processing;
- withdraw consent;
- lodge a complaint with a data protection authority.
To exercise your rights, contact us at: contact@delphiverify.com
10. Security
We use technical and organizational measures to protect information against unauthorized access, use, alteration, or disclosure. These measures include authentication, access controls, encryption in transit, and cryptographic integrity mechanisms for evidence certificates.
No system is completely secure. For that reason, we cannot guarantee absolute security.
11. International Transfers
Delphi may use infrastructure providers located in other countries. When you use the service, your information may be processed outside your country of residence, in accordance with applicable law and appropriate safeguards where required.
12. Children
Delphi is not directed to children under 13 and should not be used by anyone below the minimum age required by local law without appropriate parental or guardian consent.
If we believe we have improperly collected data from a child, we will take steps to delete that information.
13. Changes to This Policy
We may update this Privacy Policy from time to time. When we make material changes, we will update the date at the top of this page and, where appropriate, notify you through the app, website, or email.
14. Contact
For questions, requests, or complaints about privacy, contact us at:
- Email: contact@delphiverify.com