Privacy Policy

Last Updated: January 22, 2026

apgfspl.it.com ("we," "our," or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our digital identity verification platform and related technologies.

1. Information We Collect

1.1 Personal Information

We collect personal information that you voluntarily provide to us when you use our identity verification platforms, including:

• Full name and contact information
• Government-issued identification documents
• Biometric data (facial images, fingerprints, voice patterns, iris scans)
• Date of birth and demographic information
• Address and location data
• Device information and IP addresses

1.2 Automatically Collected Information

When you access our platforms, we automatically collect certain information, including:

• Device identifiers and characteristics
• Browser type and version
• Operating system information
• Access times and dates
• Pages viewed and links clicked
• Referring website addresses

1.3 Verification Data

During the identity verification process, we collect and process:

• Document images and extracted data
• Liveness detection data
• Facial comparison results
• Risk assessment scores
• Verification audit trails

2. How We Use Your Information

We use the information we collect for the following purposes:

2.1 Identity Verification

• To verify your identity for our clients' onboarding processes
• To authenticate users during financial operations
• To detect and prevent fraudulent activities
• To comply with Know Your Customer (KYC) and Anti-Money Laundering (AML) regulations

2.2 Platform Improvement

• To analyze and improve our verification algorithms
• To enhance user experience and platform functionality
• To develop new features and technologies
• To conduct research and statistical analysis

2.3 Communication

• To respond to your inquiries and support requests
• To send verification status updates
• To provide important notices about our platforms
• To communicate changes to our policies or terms

2.4 Legal Compliance

• To comply with applicable laws and regulations
• To respond to lawful requests from authorities
• To protect our legal rights and interests
• To enforce our terms and conditions

3. Data Sharing and Disclosure

3.1 With Client Organizations

We share verification results and related data with the financial institutions and organizations that engage our verification technology for their customer onboarding processes.

3.2 With Third-Party Partners

We may share information with trusted third-party partners who assist us in operating our platforms, including:

• Cloud infrastructure providers
• Database management platforms
• Document verification databases
• Analytics and monitoring tools

3.3 For Legal Reasons

We may disclose your information when required by law or in response to:

• Valid legal processes (subpoenas, court orders)
• Government or regulatory authority requests
• Protection of our rights, property, or safety
• Investigation of potential violations of our policies

3.4 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity, subject to this Privacy Policy.

4. Data Security

We implement comprehensive security measures to protect your information:

• AES-256 encryption for data at rest
• TLS 1.3 encryption for data in transit
• Multi-factor authentication for system access
• Regular security audits and penetration testing
• Secure data centers with physical access controls
• Employee security training and background checks
• Incident response and disaster recovery procedures

Despite our security measures, no system is completely secure. We cannot guarantee the absolute security of your information.

5. Data Retention

We retain your personal information for as long as necessary to fulfill the purposes outlined in this Privacy Policy, unless a longer retention period is required or permitted by law.

5.1 Verification Data

Identity verification data is typically retained for:

• Active verification records: Duration of business relationship plus 7 years
• Biometric templates: Automatically deleted after 90 days unless required for ongoing verification
• Audit logs: Maintained for 7 years for regulatory compliance

5.2 Account Data

User account information is retained until you request deletion or your account is closed, plus an additional period as required by applicable regulations.

6. Your Rights and Choices

Depending on your jurisdiction, you may have the following rights regarding your personal information:

6.1 Access and Portability

You have the right to request access to the personal information we hold about you and to receive a copy in a structured, machine-readable format.

6.2 Correction

You may request correction of inaccurate or incomplete personal information.

6.3 Deletion

You may request deletion of your personal information, subject to legal retention requirements and legitimate business needs.

6.4 Restriction and Objection

You may request restriction of processing or object to certain uses of your personal information.

6.5 Withdrawal of Consent

Where processing is based on consent, you may withdraw your consent at any time.

To exercise these rights, please contact us at the details provided in Section 12.

7. GDPR Compliance

For users in the European Economic Area (EEA), we comply with the General Data Protection Regulation (GDPR):

• We process personal data lawfully, fairly, and transparently
• We collect data only for specified, explicit purposes
• We minimize data collection to what is necessary
• We maintain data accuracy and enable corrections
• We limit data storage duration appropriately
• We implement appropriate security measures
• We demonstrate accountability for data protection

7.1 Legal Basis for Processing

We process your personal data based on:

• Contractual necessity for providing verification technology
• Legal obligations under KYC/AML regulations
• Legitimate interests in fraud prevention and platform improvement
• Your explicit consent where required

8. International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place:

• Standard Contractual Clauses approved by the European Commission
• Adequacy decisions for countries with equivalent data protection
• Privacy Shield certification where applicable
• Binding corporate rules for intra-group transfers

9. Children's Privacy

Our platforms are not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If we become aware that we have collected information from a child, we will take steps to delete such information promptly.

10. Cookies and Tracking Technologies

We use cookies and similar tracking technologies to collect and store information. For detailed information about our use of cookies, please refer to our Cookie Policy.

11. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices or for legal, operational, or regulatory reasons. We will notify you of material changes by:

• Posting the updated policy on our website
• Updating the "Last Updated" date
• Sending email notifications for significant changes
• Requiring acceptance of updated terms for continued use

12. Contact Information

If you have questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us:

apgfspl.it.com
Unit 2 103 Erindale Road, Balcatta, WA, 6021
Australia

Email: [email protected]
Phone: +61 862 431 172

12.1 Data Protection Officer

For GDPR-related inquiries, you may contact our Data Protection Officer:

Email: [email protected]

12.2 Supervisory Authority

If you are located in the EEA and believe we have not addressed your concerns adequately, you have the right to lodge a complaint with your local data protection supervisory authority.

13. Additional Information for Australian Users

We comply with the Australian Privacy Act 1988 and the Australian Privacy Principles (APPs). Australian users have rights under the Privacy Act, including the right to:

• Know why your personal information is being collected
• Ask for access to your personal information
• Request correction of your personal information
• Complain about a breach of the Australian Privacy Principles

You may lodge a complaint with the Office of the Australian Information Commissioner (OAIC) if you believe we have breached the Privacy Act.