At Electronic Verification Systems, we are committed to protecting the privacy and confidentiality of information about our customers, as well as the data of our customers.
The specific information we collect from customers includes: the company name; the names of authorized individuals within the company; address, telephone, and contact information; intent of use certification; and access security requirements certification. We also receive information from you online when you submit an Identity Verification Request (IVR). This information is deemed to be the property of the customer. Electronic Verification Systems executes Proprietary Information agreements with its customers to ensure the information in the IVR is used solely for the purpose of performing customer identity verification, as required by the USA PATRIOT Act, Section 326. In an attempt to eliminate fraudulent and improper usage of confidential information, this procedure protects the customer and Electronic Verification Systems.
Electronic Verification Systems may also use information about our customers for internal business purposes, such as billing, statistics, client services, fraud monitoring, and expanding and improving the products offered by Electronic Verification Systems. Additionally, we may use the information, including postal address and/or email address, to send you product information and marketing materials. (You may opt out of receiving such information by contacting Electronic Verification Systems and requesting to be removed from any such list.)
We may disclose any of the information we collect from or about you (as described above) to the following types of entities upon written request: regulatory authorities; affiliated or partner companies, such as data bureaus; or an entity that has executed a service or product contract with Electronic Verification Systems for purposes of providing our software solution(s).
We do not disclose the personal identity information data you provide to us via our online software to any third party for any marketing purposes. We do not sell, trade, or distribute the information we collect from you to outside vendors or third parties unrelated to the services provided by Electronic Verification Systems. This type of information may be disclosed to authorized regulatory authorities, upon request, as required by law.
EVS and the GDPR
Under the terms of the EU General Data Protection Regulation (GDPR), EVS serves as a processor for our customers that are the controllers of consumer data. Processing of consumer data through EVS services is typically authorized by the GDPR for the purposes of compliance with a legal obligation (Article 6.1.c) or as necessary for the purposes of the legitimate interests of fraud prevention (Article 6.1.f, recital 47). Customers that operate in the EU or process data of EU consumers must determine the purposes and means of processing consumer data and take appropriate steps to ensure compliance with GDPR.
EVS maintains operating agreements with data providers to ensure that data providers comply with the requirements as secondary processors of consumer data. Consumer data is processed only as necessary to complete the transaction requested by the customer, and does not perform any subsequent processing of consumer data.