Privacy Policy

Last Updated: April 25, 2024

At Authentive, safeguarding your privacy and security is of utmost importance. This End User Privacy Policy (“Policy”) aims to provide clarity and transparency regarding how we, at Authentive Inc. (“Authentive,” “we,” “our,” or “us”), collect, use, and share your data when you engage with Authentive products or services. This encompasses your interactions with Authentive Portal and the sharing of your data with the applications (“apps”) facilitated by our business customers, referred to as “developers” herein.

This Policy is designed to empower you, the end user, to comprehend the handling of your data by Authentive. It is imperative that you read this Policy carefully as it outlines essential information about your privacy rights and choices.

About this Policy

Our objective with this Policy is to furnish you with a straightforward explanation of the data collection, usage, and sharing practices employed by Authentive. We are committed to transparency and aim to offer a concise depiction of how we handle your data.

Please note that this Policy does not encompass the data practices of the developers of the apps you utilize. We advise you to review the privacy policies or terms of service of those apps for insights into their respective practices. Additionally, this Policy does not cover data collection through our websites or interactions with Authentive outside the scope of our products or services, such as direct email correspondence. For such information, please refer to our Cookie Policy.

It is important to highlight that Authentive’s services are not intended for individuals under the age of 18, and we do not knowingly collect data pertaining to children.

Our Data Practices

Authentive is committed to granting end users significant control over their data. This section delineates Authentive’s data practices concerning the processing of data pertaining to you.

Data We Collect

The data collected, used, and shared by Authentive is contingent upon the specific products and services you utilize. Depending on the Authentive products or services engaged with, we may collect the following:

Data provided by you.
Data from businesses and institutions when you share data on your account.
Data from the electronic device utilized to access Authentive services.
Data from the developers of the apps you use.
Data from our affiliates.
Data from other sources, including service providers and identity verification and fraud prevention services.

Data you provide to us.

When utilizing Authentive products or services, such as sharing data from your accounts with an app, we collect necessary data including identifiers like name, email address, date of birth, and phone number.

Data we collect from business and institutions about and from your accounts.

Depending on the Authentive products or services used and how information is made available, we may collect the following data:

Employment and/or Income data. When you use our services directly or through a third-party service provider’s app to verify your employment, or income, we collect the following data: your name, address, email, phone number, birth date, Social Security number, details about your employment history, income history, bank account data, compensation, and other relevant data.
Financial Account data. When you use our Services directly or through a third-party service provider’s app to verify your financial account, we may collect your name, email address, phone number, Social Security Number, date of birth, account number, routing number, branch number, currency, current and available balance, credit limit, transaction history, transaction type, transaction location, transaction status. Depending on the Service you or the third-party service provider’s app use, and how the data is made available, the data collected from your financial accounts may include data from all accounts (e.g., checking, savings, credit card, and joint accounts) accessible through a single set of account credentials.
Insurance data. When you use our Services directly or through a third-party service provider’s app to process an insurance verification we may collect your name, email address, phone number, account number, insurance provider name, insurance coverage.
Education data. When you use our Services directly or through a third-party service provider’s app to process an education verification we may collect your name, email address, phone number, education transcripts, diplomas.
Address data. When you use our Services directly or through a third-party service provider’s app to process an address verification we may collect your name, email address, phone number, address, associated services.
Credit history data. When you use our Services directly or through a third-party service provider’s app to connect your credit history, we may collect your name, email address, phone number, Social Security Number, date of birth, account numbers, outstanding balance, payment history, delinquencies, bankruptcies, public records. Your Communications with Us. We collect personal data from you such as your email address, phone number, or mailing address when you request information about our Services, sign up for marketing from us, register for our newsletter, request customer service or support, or otherwise communicate with us.
Surveys. We may invite you to participate in surveys, during which you may be asked to provide certain information, including personal information.
Interactive Features. Interactive features like blogs and social media pages may be offered by us, and any content you provide through these features will be considered public and not subject to the privacy protections outlined in this Policy.
Conferences, Trade Shows, and Other Events. We may attend events where personal information may be collected from individuals interacting with or expressing interest in Authentive and/or the Services.
Business Development and Strategic Partnerships. Personal information may be collected from individuals and third parties to assess and pursue potential business opportunities.
Job Applications. If you apply for a job through our Services, we may collect and process the information provided in your application, CV, and/or cover letter to evaluate your suitability for employment.

Data we receive from your devices. When you interact with our services using a device such as a smartphone, tablet, or computer, we may collect data about that device, including but not limited to internet protocol (IP) address, timezone setting, hardware model, operating system, browser data, and network data.

Data we receive about you from the developers of apps powered by Authentive. When needed for Authentive to provide a service (like verifying your identity, protecting against fraud or risk, or enabling a bank transfer), the developers of the apps you use may provide us with identifiers and commercial information about you, like your name, Social Security number, email address, phone number, or information about your financial accounts and transactions.

Information we derive from the data we collect. Additional information may be inferred from the data we collect, such as geo-location, annual income, or account type, to enhance services or personalize user experiences.

How We Use Your Data

We use your data for the following business and commercial purposes:

Service Provision: Operating, delivering, and maintaining our services.
Service Enhancement: Improving, augmenting, modifying, expanding, and further evolving our services.
Fraud Prevention, Identity Verification, and Privacy Protection: Verifying your identity and aiding in the prevention of fraud, malicious activities, and other privacy and security-related concerns for your protection as well as that of developers, partners, Authentive, and other stakeholders.
Insight Development: Generating insights derived from the data collected about you. This encompasses transactional data, other financial information, and data from various sources, assisting developers of connected apps in delivering services and enhancing user experiences. For instance, facilitating quicker access to your funds, detecting and mitigating potential fraudulent activities, or personalizing services to suit your needs.
Support Provision: Providing assistance to you or developers, including responding to inquiries related to our services or developers’ apps.
Communication: Engaging in communication with you by sending technical notices, updates, security alerts, and messages if you utilize Authentive Portal.
Misuse and Misconduct Investigation: Investigating any instances of misuse of our services or developers’ apps, including criminal activities or unauthorized access.
Legal Compliance: Fulfilling contractual and legal obligations as mandated by applicable laws. This may include purposes such as establishing and defending against claims.
With Your Consent: Undertaking other notified purposes with your explicit consent or at your direction.

We gather, utilize, and share data that has been aggregated or anonymized in a manner that does not personally identify you, for any purpose permitted under applicable laws. This includes utilizing aggregated or anonymized data for creating new services, facilitating research, and for analytical purposes aimed at evaluating the speed, accuracy, and/or security of our services.

How We Share Your Data

We share your data for the following reasons:

With App Developers: We share your data with the developer of the app you are using, as directed by that developer.
Contract Enforcement: Data may be disclosed to enforce any contractual agreements with you.
Legal Compliance: If we reasonably believe it necessary to comply with applicable laws, regulations, or legal processes (such as court orders or subpoenas), we may disclose your data.
Business Changes: In connection with changes in ownership or control of all or part of our business, such as mergers, acquisitions, reorganizations, or bankruptcy proceedings, your data may be transferred.
Within Authentive and Affiliates: Data may be shared between Authentive and our current and future parents, affiliates, subsidiaries, and other entities under common control or ownership. Protection of Rights and Safety: Data may be disclosed as reasonably necessary to prevent malicious or fraudulent activities or to protect the rights, privacy, safety, or property of you, developers, our partners, Authentive, and others.
With Your Consent or Direction: Data may be disclosed for any other notified purpose with your consent or at your direction.

When linking your financial accounts through Authentive, we may utilize Google’s reCAPTCHA service to detect fraud and abuse. Google reCAPTCHA analyzes user behavior using various metrics, processing personal data such as IP addresses and usage patterns. This data is transmitted and stored by Google on servers in the United States and other countries. Google's adherence to the EU-US Data Privacy Framework can be confirmed here. When reCAPTCHA is utilized, Google’s Privacy Policy and Terms of Use apply to the data collected.

Your personal financial data is only shared with third parties to facilitate the services you requested, with your consent, or to mitigate fraud.

We may collect and share cookie data with third parties when you visit our website, or third parties may collect this cookie data from our sites. For further details, please refer to our Cookie Policy Statement.

Our Retention and Deletion Practices

We retain your data only for as long as necessary. To determine the necessity of data retention, we assess the purpose for which your data was collected and used, as well as any legal obligations regarding data retention. We conduct periodic reviews of your data to ensure that it is still required to fulfill its original purpose or any other legal requirements. Our systems at Authentive are designed to automatically delete your personal data, with certain exceptions where retention may be necessary. These exceptions include:

Continuing to provide you with Authentive services you have requested.
Compliance with legal obligations requiring data retention.
Necessity for fraud prevention, privacy protection, support provision, or investigation of misuse and misconduct.
where Authentive has anonymized your data such that it can not re-identified.
Upon specific agreement with you, retaining your data for an extended period.

Your data will be processed only as required by law or as outlined in this Policy.

Protection of Data

At Authentive, we prioritize the confidentiality and integrity of your data through comprehensive security policies and practices. We enforce strict controls to restrict access to your data to personnel with legitimate business purposes, and we prohibit any unauthorized access, use, or disclosure of this data.

Your Data Protection Rights

Irrespective of your location, you have the following rights concerning your personal data, subject to certain limitations and exceptions as provided by law. We ensure that you will not face discrimination for exercising these rights:

Access: You have the right to access the data collected about you.
Detailed Information: You may request access to more detailed information about the categories and specific pieces of personal information we have collected about you in the last 12 months, including data disclosed for business purposes.
Rectification or Update: Under specific circumstances, you can request the rectification or update of inaccurate or incomplete data.
Erasure or Restriction: You have the right, under certain circumstances, to request the erasure or restriction of the processing of your data.
Objection: You may object to the processing of your data under conditions provided by law.
Withdrawal of Consent: If the processing of your data is based on consent, you have the right to withdraw that consent.
Data Portability: You can request that we provide data collected about you in a structured, commonly used, and machine-readable format, enabling you to transfer it to another company, where technically feasible. Please note, for an official record of your financial information, direct requests should be made to your financial institution.

To exercise any of these rights, you can submit a request using our contact form. Additional information may be required to confirm your identity before we can respond to your request. If we receive a request from an authorized agent, evidence of valid written authority, such as a power of attorney, may be requested to submit requests on your behalf. We aim to consider and respond to requests within a reasonable time frame, as required by applicable law. However, certain data may be exempt from such requests, such as data necessary for our legal obligations or to establish, exercise, or defend legal claims.

Changes To This Policy

We periodically update or modify this Policy. In the event of any updates or changes, we will post the revised policy on the Authentive website at privacy-policy and update the date at the top of this Policy. If you are an active user of Authentive Portal, we will also send you an email notifying you of the update.

Contacting Authentive

For any inquiries or complaints about this Policy or our privacy practices in general, you can contact us.