Privacy Policy

1. Introduction

This Privacy Policy applies to Verifire B.V. and explains how we process personal data in connection with our website, business enquiries, product discussions, onboarding conversations, and verified wallet infrastructure services.

Verifire provides infrastructure for regulated digital finance, including reusable onboarding, identity-linked wallet workflows, verified wallet ownership support, and white label wallet experiences.

We process personal data in accordance with the GDPR, the Dutch GDPR Implementation Act, and other applicable privacy and information security obligations.

2. Contact details

The controller responsible for processing personal data under this policy is Verifire B.V.

• Registered office: Seinhuiswachter 2, 3034 KH Rotterdam, The Netherlands
• Legal entity: Private limited company under Dutch law (Besloten Vennootschap).
• KVK: 80849296
• VAT: NL861824416B01
• Email: hello@verifire.com

3. Categories of personal data

Depending on your interaction with Verifire, we may process the following categories of personal data:

• Business contact details such as name, work email, telephone number, company, and role
• Commercial enquiry data, including information shared through demo requests, contact forms, and sales conversations
• Technical usage data such as IP address, browser information, page visits, and device-level diagnostics
• Communications data, including emails, meeting notes, and support or partnership correspondence
• Operational and compliance-related information provided in the context of evaluating or using Verifire services

4. Purposes and legal bases

We process personal data to respond to enquiries, evaluate platform fit, provide services, improve our website and product operations, meet legal obligations, and maintain the security and integrity of our systems.

The relevant legal bases may include performance of a contract, steps taken at your request before entering into a contract, legitimate interests, legal obligations, and consent where consent is required.

5. Sharing and processors

Verifire does not sell personal data. We may share data with infrastructure providers, hosting providers, professional advisers, analytics providers, or other processors engaged to support our services, subject to appropriate contractual safeguards.

Where processing is carried out on behalf of customers, Verifire uses processor arrangements and data protection terms appropriate to the service and regulatory context.

6. Security and retention

We apply technical and organisational measures designed to protect personal data against unauthorised access, loss, disclosure, alteration, and misuse. These measures include access management, secure hosting, encryption in transit where appropriate, and operational controls around platform and business systems.

We retain personal data only for as long as necessary for the purposes for which it was collected, to manage business relationships, and to satisfy legal, tax, compliance, or audit requirements.

7. Data subject rights

Under applicable law, you may have rights of access, rectification, erasure, restriction, objection, and data portability, subject to the scope and limitations of the GDPR.

To exercise these rights, contact us using the contact details on this page. We may ask you to verify your identity before acting on your request.

8. Complaints and updates

If you believe that our processing of personal data does not comply with applicable law, we ask that you contact us first so we can address the issue. You also have the right to lodge a complaint with the Dutch Data Protection Authority.

We may update this Privacy Policy from time to time to reflect changes in our services, legal obligations, or processing activities.