End-User Verification Notice
Effective date: 15 June 2026
This End-User Verification Notice explains how IDEEVY processes identity document information when a company, platform, or other business customer uses IDEEVY to verify an identity document. It is intended for individuals whose documents are submitted through an IDEEVY-powered verification flow.
In simple terms: IDEEVY provides identity document verification technology to Business Customers. We verify document images and related document data on behalf of those Business Customers. We do not collect selfies, perform liveness checks, create biometric templates, or make the final decision about whether a Business Customer provides you with its service.
1. Who operates IDEEVY
“IDEEVY”, “we”, “us” and “our” refer to INTEGRITYTECH HK LIMITED, a company registered in Hong Kong. IDEEVY provides identity document verification services through ideevy.com and related products, APIs, and verification infrastructure.
The company or platform that asked you to complete a verification is referred to in this Notice as the “Business Customer”. You are referred to as the “End User”.
2. Why your document is processed
Your identity document may be processed by IDEEVY because a Business Customer uses IDEEVY to check whether an identity document appears valid, readable, suitable for verification, and consistent with the verification requirements selected by that Business Customer.
The Business Customer determines why your document is requested, what legal basis applies to the verification, and how the verification result is used in relation to its own product, service, account, transaction, or onboarding process.
3. What IDEEVY does
IDEEVY provides identity document verification, also known as IDV. Our standard service is limited to the processing of identity document images and related document data required to perform document verification.
- receiving and processing images of identity documents submitted through a verification flow;
- checking whether the image is readable, complete, and suitable for verification;
- identifying the document type, issuing country, and document side where applicable;
- extracting and validating document data where enabled by the Business Customer;
- checking document structure, expiry information, MRZ, barcode, OCR fields, and other document-level signals where applicable;
- returning a verification status or result to the Business Customer.
4. What IDEEVY does not do as part of the standard service
IDEEVY is not a full KYC, AML, sanctions, or biometric verification platform in its standard service. Unless separately agreed in a specific customer arrangement, IDEEVY does not provide services outside identity document verification.
- we do not collect selfies;
- we do not perform liveness checks;
- we do not perform face matching or facial recognition;
- we do not create, store, or process biometric templates;
- we do not perform AML, PEP, sanctions, or adverse media screening as part of the standard IDV service;
- we do not decide whether the Business Customer accepts you, rejects you, opens an account for you, provides a service to you, or takes any other final business decision.
5. Data that may be processed
Depending on the verification flow configured by the Business Customer, IDEEVY may process the following categories of data:
- images of identity documents, including front and back sides where applicable;
- document type, issuing country, document side, expiry date, and other document characteristics;
- data extracted from the document where enabled, such as name, date of birth, document number, nationality, MRZ data, barcode data, and OCR fields;
- image quality and suitability information, such as whether the image is blurred, incomplete, cropped, unreadable, expired, or otherwise unsuitable;
- verification result, status, reason codes, resubmission reasons, and related verification records;
- technical metadata needed to operate, secure, and audit the service, such as IP address, browser or device information, timestamps, session identifiers, project identifiers, logs, and API records.
6. How the verification result is used
IDEEVY returns verification information to the Business Customer that requested the verification. The Business Customer uses that information according to its own policies, legal obligations, product rules, onboarding requirements, and customer relationship with you.
IDEEVY does not control the Business Customer’s final decision. If you have questions about why verification was required, why a service was refused, why your account was restricted, or how the Business Customer uses the result, you should contact the Business Customer directly.
7. Retention
IDEEVY retains verification records, including identity document images and related verification data, for up to one year from the date of verification, unless a shorter period is configured or agreed with the Business Customer, or a longer period is required to comply with applicable law, resolve disputes, prevent fraud or abuse, protect the service, or meet security obligations.
When retention is no longer required, IDEEVY deletes or de-identifies verification records in accordance with applicable operational, security, legal, and contractual requirements.
8. Storage and international processing
Where reasonably possible, IDEEVY aims to store and process verification data in the user’s country or region, or in another location consistent with the Business Customer’s configuration and applicable data protection requirements.
However, verification data may be processed or stored in other jurisdictions where IDEEVY, its infrastructure providers, or service providers operate. Such processing is subject to appropriate contractual, technical, and organizational safeguards.
9. Security
IDEEVY applies commercially reasonable technical and organizational measures designed to protect verification data. These measures may include encrypted storage, secure transmission, access controls, restricted access based on operational need, audit logging, monitoring, and other industry best-practice safeguards.
No system can be guaranteed to be completely secure. IDEEVY maintains security practices intended to reduce risk and protect the confidentiality, integrity, and availability of verification data.
10. Service providers
IDEEVY may use trusted infrastructure, hosting, storage, monitoring, security, communication, and document-processing service providers to deliver and protect the service. These providers may process data only as needed to provide services to IDEEVY and are subject to contractual and security controls.
For operational security reasons, IDEEVY does not publish a complete public list of infrastructure and security vendors. Business Customers may request relevant subprocessor information as part of vendor review, DPA negotiation, or enterprise onboarding, subject to appropriate confidentiality and security considerations.
11. Your privacy requests
If your identity document was processed through IDEEVY on behalf of a Business Customer, you should first contact that Business Customer regarding access, deletion, correction, objection, restriction, or any other privacy request. The Business Customer determines why your document was submitted and how the verification result is used.
IDEEVY generally acts on End User requests through the Business Customer. You may contact IDEEVY directly at privacy@ideevy.com only if you cannot identify or reach the relevant Business Customer, if the Business Customer is unavailable, or if your request specifically concerns IDEEVY’s own processing.
12. Children and minors
The service is not intended for direct use by children. Business Customers must not submit identity documents of minors unless they have a valid legal basis and all required consents or authorizations under applicable law. IDEEVY relies on Business Customers to determine whether a verification involving a minor is lawful, necessary, and appropriately authorized.
13. Relationship with the Privacy Policy
This Notice is a short explanation for End Users who complete an identity document verification flow. It should be read together with the IDEEVY Privacy Policy available at ideevy.com. The Privacy Policy contains more detailed information about IDEEVY’s processing activities, website analytics, cookies, legal bases, international transfers, and company details.
14. Changes to this Notice
IDEEVY may update this Notice from time to time. The updated version will be posted on ideevy.com with a new effective date. Material changes may also be communicated to Business Customers where appropriate.
15. Contact
For privacy matters related to IDEEVY’s own processing, contact: privacy@ideevy.com.
IDEEVY is operated by INTEGRITYTECH HK LIMITED, Hong Kong. Website: ideevy.com.