Xverify is CERTIFIED in the EU-U.S. PRIVACY SHIELD FRAMEWORK and the SWISS-U.S. PRIVACY SHIELD FRAMEWORK. DPAs (Data Processing Addendum’s) are available to all clients who require them under GDPR Compliance.
Xverify maintains a high level of commitment to the security and privacy of client data. We ensure that all data transmitted to us is secured and never used for any purpose other than verification. Xverify processes all data through Amazon Web Services, holding secure connections to and from the host server. Clients control their data retention policy, which allows for a maximum of 30 days, after which all data will be automatically deleted. Clients can request the deletion of any data at any time in their Xverify account. In compliance with GDPR, all processing activities are logged so that clients can identify the date, file name, type of verification, and the number of records processed in their account.
You can also request a DPA here.