This Privacy Policy explains how the International Records Verification Bureau (IRVB) collects, uses, stores, and protects your personal information when you use our platform at https://interecauth.com.
1. Information we collect
We collect the following categories of information:
| Category | What we collect | Why |
|---|
| Account data | Name, email address, phone number, password (encrypted) | To create and manage your account |
| Document data | Uploaded documents (PDFs, images), document titles, page counts | To perform verification services |
| Payment data | Payment receipts, declared amounts, payment references | To confirm payment and process verifications |
| Verification data | Issued codes, certificates, agency names, dates | To maintain a record of verifications |
| Usage data | Login times, IP addresses, actions taken on the platform | For security and audit purposes |
| Profile data | Photos, biographies, skills (if a public profile is created) | To display on publicly indexed profile pages |
2. How we use your information
We use your information to:
- Provide document verification and authentication services
- Process payments and issue verification certificates
- Send email notifications about your verification status
- Maintain security and prevent fraudulent activity
- Comply with legal obligations and regulatory requirements
- Improve our platform and services
- Respond to your enquiries and support requests
We do not sell, rent, or trade your personal information to third parties for marketing purposes.
3. How we protect your data
IRVB implements industry-standard security measures to protect your personal information:
- Encryption — All passwords are hashed using bcrypt. All data is transmitted over HTTPS (SSL/TLS)
- Access controls — Documents are stored outside the public web directory and served only through authenticated requests
- Session security — Sessions use secure, HttpOnly cookies with strict protections against hijacking
- Audit logging — All administrative actions are logged for accountability
- Rate limiting — Login and sensitive actions are rate-limited to prevent brute-force attacks
4. Information sharing
We may share your information only in the following circumstances:
- Verification lookup — When a valid verification code is searched publicly, basic document and holder information is displayed to confirm authenticity
- Public profiles — If a public profile page is created for you (by IRVB administration), your name, profession, bio, and verified document types may be publicly visible and indexed by search engines
- Legal requirements — When required by law, court order, or governmental authority
- Fraud prevention — With law enforcement when we detect fraudulent document submissions
5. Data retention
We retain your data for the following periods:
- Account data — Retained for the duration of your account and 3 years after closure
- Verification records — Retained indefinitely as they form part of our official records
- Uploaded documents — Retained for a minimum of 7 years for audit purposes
- Audit logs — Retained for 5 years
- Payment records — Retained for 7 years for financial compliance
6. Your rights
You have the following rights regarding your personal data:
- Access — You may request a copy of the personal data we hold about you
- Correction — You may update inaccurate information through your profile settings
- Deletion — You may request deletion of your account and associated data, subject to our legal retention obligations
- Portability — You may request your data in a commonly used format
- Objection — You may object to certain uses of your data
To exercise any of these rights, contact us at support@interecauth.com.
7. Cookies
IRVB uses only essential cookies necessary for the platform to function:
- Session cookie — Keeps you logged in during your visit. Expires when you close your browser or after 24 hours
- CSRF token — Protects against cross-site request forgery attacks
We do not use advertising cookies, tracking pixels, or third-party analytics cookies.
8. International transfers
IRVB operates internationally. Your data may be processed in countries other than your country of residence. We ensure appropriate safeguards are in place for any international data transfers in compliance with applicable data protection laws.
9. Changes to this policy
We may update this Privacy Policy from time to time. Changes will be posted on this page with an updated date. We encourage you to review this policy periodically. Continued use of the platform after changes constitutes acceptance of the revised policy.