LAST UPDATED · 16 JULY 2026
Creator Passport is operated by Vyzonek Technologies Pvt Ltd. We built verification on a principle of data minimization: we store proofs and hashes, not raw identity documents. This policy explains what we collect, why, and the rights you hold under India's Digital Personal Data Protection Act, 2023 (DPDP).
Account data: your email, chosen @handle, display name and preferred language.
Verification signals: a liveness result (a pass/fail boolean and a confidence score — never the selfie frames after processing), OAuth-confirmed handle ownership, and public engagement metrics used to compute your authenticity score.
We do NOT store government ID numbers. Where a KYC-lite check runs, we keep only a salted hash and a verified boolean.
To operate the six trust layers (Human Verify, Handle Ownership, Authenticity Score, Impersonation Watch, Content Signing, Deal Trust), to show your public passport, and to let brands verify you.
Every AI decision produces a risk score with reasons — never a definitive 'fake/real' label — and is logged for auditability.
We process your personal data on the basis of the explicit consent you give at onboarding. That consent event is timestamped and recorded.
You can withdraw consent at any time by deleting your data (see 'Your rights'). Withdrawal does not affect processing already carried out.
Public passport fields (handle, display name, authenticity score, verified layers) are visible by design.
We use processors for hosting, payments (Razorpay) and AI inference. They act on our instructions under contract and only for the purposes above. We never sell your data.
Verification records are retained while your account is active and for a limited period afterwards to meet legal and audit obligations. Selfie frames are discarded immediately after the liveness result is produced.
You may access, correct, and erase your personal data. Erasure is available in-app under Dashboard → Delete my data, which removes your account, handles and verification records.
You may nominate another person to exercise these rights in the event of death or incapacity, and you may raise a grievance with our Data Protection contact before approaching the Data Protection Board of India.
OAuth tokens are encrypted at rest. Access to production data is restricted and audited. Report any vulnerability to security@verify4.ai.
QUESTIONS? WRITE TO PRIVACY@VERIFY4.AI · VYZONEK TECHNOLOGIES PVT LTD
← BACK TO HOME