Verify Credentials is an ISO-certified company in India providing pre‑employment and post‑employment background verification services. This Privacy Policy explains how we collect, process, store, share and protect personal data in the course of employment document verification.

Scope & Applicability

This Policy applies to all digital personal data collected within India or later digitized, and to processing conducted in India or for individuals resident in India

Definitions

• Data Principal: the candidate or individual whose personal data is processed.
• Data Fiduciary: Verify Credentials as collector and processor.
• Personal Data / Sensitive Personal Data: includes identification details, identity documents, education and employment history.

Legal Basis for Processing

• Consent‑based processing: We obtain explicit informed consent from data principals before collecting sensitive personal data
• Employment purpose basis: For data related to employment verification, we rely on the designated lawful purpose for processing employee data without separate consent in certain contexts.

Personal Data Collected

• We may collect categories including (but not limited to):
• Identity and contact details (name, photo, email, mobile, address, DOB)
• Government IDs (PAN, Aadhaar, passport, driver’s licence)
• Education credentials, professional qualifications, and employment history
• Employment history data.

Purpose of Collection & Use

We use personal data to:

• Conduct background verifications, risk assessments, address/education/criminal checks
• Authenticate candidate identity and documentation
• Prepare and deliver reports to requesting clients
• Improve, maintain, and secure our digital platform and services
• Respond to requests, inquiries, or disputes from data principals or clients
• Comply with legal, regulatory or contractual obligations

Data Retention

We retain data only as long as necessary for verification purposes or as legally required. Once services are completed and the retention period has lapsed, the data is securely deleted.

Disclosure & Sharing

We do not sell or rent personal data. Data may be shared with:

• Clients who requested the verification
• Third‑party service providers (e.g. technical, court‑records research) under strict confidentiality and limited use terms
• Lawful requests from regulators, courts, or law enforcement authorities
• In case of business transactions (merger, sale), with notice and data protection assurances

Consent, Access & Rights of Data Principals

Data principals have the right to:

• Be informed about collection and processing purposes
• Withdraw consent, access, rectification, and erasure of their data

Security Measures

We implement reasonable security practices—including encryption, access controls, audits, and secure infrastructure—to protect personal data.

Data Breach Notification

In the event of a personal data breach, we will promptly notify affected data principals and relevant authorities as mandated under law, and take remedial action.

Data Protection Officer (DPO) & Grievance Redressal

For any privacy-related concerns, individuals may contact us at: info@verifycred.in

Policy Review & Updates

This privacy policy will be reviewed periodically (at least annually or upon changes in law) and updated as needed. We will notify data principals via email or website notice of material changes.

Acknowledgement & Acceptance

By consenting or using our services, data principals acknowledge having read and agreed to this Privacy Policy.