Legal

Terms & Privacy

Terms & Conditions and Privacy Policy for EliteVerify services.

Terms & Conditions

Last Updated: February 2026

1. Introduction

These Terms and Conditions ("Terms") govern access to and use of EliteVerify™ websites, portals, and services, including the RiskScore360® platform and related products (collectively, the "Services"). By accessing or using the Services, you agree to these Terms.

If you are using the Services on behalf of a company, agency, or other entity (a "Customer"), you represent that you have authority to bind that entity, and "you" includes the entity. If you do not agree, do not use the Services.

These Terms apply to general website and portal use. Enterprise or government Customers may also be subject to a Master Services Agreement ("MSA"), Statement of Work ("SOW"), Data Processing Addendum ("DPA"), or other written agreement. If there is a conflict, the written agreement controls for that Customer relationship.

2. Definitions

  • "Applicant" means an individual whose identity is verified or assessed through the Services at the request of a Customer.
  • "Customer" means an organization that subscribes to, purchases, or otherwise uses the Services.
  • "RiskScore360 Output" means any score, rating, risk indicator, analysis, report, alert, or other output generated by the Services.
  • "Content" means information, text, files, documents, images, or data submitted to the Services.
  • "OSINT" means publicly available open-source intelligence data.

3. Scope of Services

EliteVerify provides identity verification, risk intelligence assessments, and related reporting tools. RiskScore360 Outputs are decision support tools intended to assist Customers, they do not constitute legal advice, official government determinations, or guarantees of eligibility, suitability, or outcomes.

Certain features may be offered as add-ons, including monitoring products that provide periodic re-checks or changing detection alerts. Feature availability may vary by plan, jurisdiction, and Customer configuration.

4. Eligibility and Account Registration

You must be at least 18 years old to create an account. You agree to provide accurate and complete information, maintain the security of your credentials, and promptly notify us of suspected unauthorized access.

We may require multi-factor authentication, additional verification, or administrative controls for certain accounts or environments.

5. Acceptable Use

You agree not to:

  • Use the Services for unlawful, deceptive, or harmful purposes
  • Attempt to gain unauthorized access to systems, accounts, or data
  • Reverse engineer, scrape, extract, or attempt to discover underlying models, methods, or source code except to the extent prohibited by law
  • Upload malicious code or interfere with performance, availability, or security
  • Use the Services to discriminate unlawfully or to make decisions in violation of applicable laws
  • Misrepresent RiskScore360 Outputs as official determinations

We may suspend or terminate access for violations, suspected misuse, or security risk.

6. Customer Responsibilities and Compliance

Customers are responsible for:

  • Ensuring they have legal authority to submit data for processing
  • Providing any notices and obtaining any consent required by law
  • Using the Services and Outputs in compliance with applicable laws, regulations, and internal policies
  • Maintaining appropriate human review and decision governance when relying on Outputs

If Customers use the Services in employment, tenant screening, credit, insurance, or similar regulated contexts, they are responsible for assessing applicability of laws such as the Fair Credit Reporting Act ("FCRA") and equivalent state or international frameworks.

7. Applicant Disclosures and Cooperation

When Applicants submit information, including identity documents or images, they represent that the information is accurate and belongs to them, and they consent to verification steps necessary to complete the requested assessment, subject to applicable law and Customer program configuration.

Applicants acknowledge that assessments may incorporate third-party and public source data, and that availability and accuracy of sources can vary.

8. Privacy and Data Processing

Our handling of personal information is described in our Privacy Policy below. Customers may also be subject to a Data Privacy Agreement or similar terms. Where we process personal information on behalf of a Customer, the Customer is generally the controller, and EliteVerify is a processor or service provider, subject to applicable law and contract.

9. Fees, Billing, Taxes, and Refunds

9.1 Fees and billing

Fees are set by the plan, order flow, SOW, or other written agreement. You agree to pay all applicable fees when due. We may use third party payment processors.

9.2 Taxes

Fees are exclusive of taxes unless stated otherwise. You are responsible for applicable taxes, duties, or similar charges, excluding taxes based on EliteVerify revenues.

9.3 Refunds

Refund eligibility, if any, depends on the purchase channel and the applicable agreement. Services are non-refundable once processing begins, particularly verification steps that incur third-party costs. For enterprise Customers, refund terms are governed by the MSA or SOW.

10. Intellectual Property

EliteVerify retains all rights, title, and interest in and to the Services, including software, models, scoring logic, workflows, documentation, and RiskScore360 Outputs, except to the extent Outputs incorporate Customer Content.

Customers and authorized users receive a limited, non-exclusive, non-transferable license to access and use the Services and Outputs solely for internal business purposes consistent with the agreement and these Terms.

You may not copy, distribute, resell, sublicense, or publicly display Outputs except as expressly permitted by contract or law.

11. Confidentiality

If you receive nonpublic information about EliteVerify, including pricing, security details, methods, scoring factors, or product roadmaps, you agree to keep it confidential and use it only to evaluate or use the Services. For enterprise Customers, confidentiality obligations may also be addressed in the MSA or fully executed Non-Disclosure Agreement (NDA).

12. Disclaimers

The Services and Outputs are provided "as is" and "as available." To the maximum extent permitted by law, EliteVerify disclaims all warranties, express or implied, including merchantability, fitness for a particular purpose, and non-infringement.

Risk intelligence may include OSINT and third-party data, which may be incomplete, outdated, contain errors, or be misattributed. EliteVerify does not guarantee accuracy, completeness, or the absence of false positives or false negatives.

13. Limitation of Liability

To the maximum extent permitted by law:

  • EliteVerify will not be liable for indirect, incidental, special, consequential, or punitive damages, including lost profits, lost revenue, loss of data, or business interruption
  • EliteVerify total liability for any claim arising out of or relating to the Services will not exceed the amount paid to EliteVerify for the Services giving rise to the claim in the twelve months preceding the event

Some jurisdictions do not allow certain limitations, so parts of this section may not apply to you.

14. Indemnification

You agree to indemnify and hold EliteVerify harmless from claims, liabilities, damages, and expenses arising from your unlawful use of the Services, violation of these Terms, or submission of Content without proper rights or authority.

For enterprise Customers, indemnity terms may be defined in the MSA.

15. Suspension, Termination, and Survival

We may suspend or terminate access immediately if we reasonably believe there is a security risk, misuse, unlawful activity, or material breach of these Terms.

Upon termination, your right to use the Services ends. Sections that by their nature should survive will survive, including confidentiality, intellectual property, disclaimers, limitation of liability, indemnification, and dispute resolution.

16. Changes to the Services or Terms

We may modify the Services or these Terms from time to time. If changes are material, we will provide notice by updating the "Last Updated" date and, where appropriate, via the website or portal. Continued use after changes become effective constitutes acceptance.

17. Governing Law and Dispute Resolution

These Terms are governed by the laws of the State of Wyoming, without regard to conflict of law principles.

Unless a written agreement states otherwise, disputes arising out of these Terms will be brought in state or federal courts located in Wyoming, and you consent to jurisdiction and venue there. We may seek injunctive relief for misuse of intellectual property, confidentiality breaches, or security related harm.

18. Contact

Questions about these Terms can be sent to:

Email: info@eliteverify.us
Address: Washington, D.C.

Privacy Policy

1. Introduction

EliteVerify™ (also referred to as "EliteVerify," "we," "us," or "the Company") is committed to protecting privacy and safeguarding personal information. This Privacy Policy explains how we collect, use, disclose, store, and protect information in connection with the RiskScore360® platform, our related products and services, and our websites, including any applicant, client, reseller, or administrative portals we operate.

This policy applies when you, or an organization you work with, uses EliteVerify services, interacts with our website, or communicates with us. In many cases EliteVerify processes personal information on behalf of a customer, for example an employer, government agency, event organizer, travel program, or other organization. In those cases, EliteVerify acts as a service provider or processor, and the customer is the controller or business that determines why and how data is used. Where a customer's instructions differ from this policy, the customer's contract may govern.

2. Information We Collect

We collect information that is reasonably necessary to verify identity, support risk intelligence assessments, deliver reports and monitoring products, secure our platform, and comply with legal obligations.

2.1 Information you provide directly

Depending on the service workflow, we may collect:

  • Identity and contact details — name, email address, telephone number, mailing address, date of birth, and similar identifiers
  • Government issued identifiers — passport number, driver license number, national identification number, visa identifiers, and similar data, where permitted by law and required for verification
  • Account and authentication details — username, password, multi factor authentication data, and access logs for portal users
  • Employment and affiliation information — employer name, role, work history, education history, professional licenses, and related profile details, if required by the customer program
  • Documents and images — uploaded IDs, selfies, liveness capture, supporting documentation, and associated metadata, when identity proofing is part of the service
  • Communications — emails, chat messages, support requests, feedback, and call notes, including recordings where legally permitted and disclosed

2.2 Information collected automatically

When you use our website or portals, we may collect:

  • Device and usage data — IP address, browser type, device identifiers, operating system, time zone, referral URLs, pages viewed, and session activity
  • Security and fraud signals — login timestamps, failed login attempts, token activity, and anomaly signals used to protect accounts and platform integrity
  • Cookie and analytics data — as described in Section 10

2.3 Information from third parties and public sources

To support verification and risk intelligence assessments, we may receive or derive information from:

  • Identity verification and fraud prevention providers
  • Data enrichment sources that validate contact attributes or identity attributes, where legally allowed
  • Publicly available sources, including open-source intelligence (OSINT), such as public records, sanctions lists, watchlists, corporate registries, court filings, and other sources accessible to the general public
  • Customer supplied data, information provided to EliteVerify by our clients about an applicant, employee, traveler, contractor, or other individual within the client's program

2.4 Sensitive information

Some services may involve processing sensitive data categories depending on jurisdiction and customer requirements, for example government identification numbers, biometric identifiers, or background related signals. We process such data only when necessary for the service, authorized by the customer, and permitted by applicable law; we apply heightened safeguards to this information.

3. How We Use Information

We use personal information for specific, limited purposes tied to delivering the services. We do not sell personal information.

3.1 Core service purposes

We may use information to:

  • Verify identity, authenticate users, and prevent fraud
  • Perform risk intelligence assessments and generate RiskScore360 outputs requested by a customer
  • Provide monitoring products where enabled, including change detection, alerting, and ongoing verification events
  • Produce reports, audit logs, and evidence trails that support customer compliance, operational review, and adjudication workflows
  • Maintain full digital provenance back to source data for assessments, including source references and time stamps, where available and lawful

3.2 Platform operations and support

We may also use information to:

  • Provide customer support, troubleshoot issues, and respond to requests
  • Secure the platform, investigate suspicious activity, and enforce access controls
  • Improve performance, reliability, and usability of our services, including model tuning and quality assurance, using appropriate safeguards and minimization
  • Meet contractual obligations, manage billing and account administration for customers, and document service delivery

3.3 Legal and compliance uses

We may use information to:

  • Comply with applicable laws, lawful requests, and legal processes
  • Exercise or defend legal claims, protect rights and safety, and prevent misuse of our services

4. Legal Bases for Processing

Where required by law, EliteVerify relies on one or more legal bases to process personal information:

  • Performance of a contract to provide services under our agreements with customers
  • Legitimate interests, such as securing our platform, preventing fraud, and improving service reliability, provided those interests are not overridden by individual rights
  • Compliance with legal obligations, including responding to lawful requests
  • Consent, where required for specific activities, such as certain cookies or specific verification flows; consent may be withdrawn where applicable

5. Data Security

We use administrative, technical, and physical safeguards designed to protect personal information against unauthorized access, disclosure, alteration, or destruction.

Our security measures may include:

  • AES 256 encryption for data at rest, and encryption in transit using modern transport security protocols
  • Multi-factor authentication options and session security controls
  • Role based access controls, least privilege principles, and environment segregation
  • Tamper resistant audit logs and monitoring for anomalous behavior
  • Secure development practices, code review, vulnerability management, and regular security testing
  • Incident response procedures, including containment, remediation, and notification processes where required

We maintain a SOC 2 compliance roadmap, including progression from SOC 2 Type I toward SOC 2 Type II, aligned with industry standards for security, availability, and confidentiality.

No system can be guaranteed 100 percent secure, but we design for defense in depth and we continually improve controls as threats evolve.

6. Data Retention

EliteVerify retains personal information only for as long as necessary to fulfill the purposes described in this policy, to meet contractual requirements, and to comply with applicable legal obligations.

Retention periods vary based on:

  • The customer program configuration and contractual terms
  • Whether monitoring is enabled and requires ongoing reference data
  • Legal, regulatory, and audit obligations, including documentation and dispute resolution needs
  • Security requirements, including maintaining logs and evidence for a reasonable period

When retention ends, we delete, anonymize, or de-identify data using appropriate methods. Customers may request deletion or return of data in accordance with the applicable agreement and legal requirements; some data may need to be retained for legal compliance or security purposes.

7. GDPR and International Compliance

EliteVerify maintains GDPR aligned data handling practices. Where GDPR or similar laws apply, individuals may have rights that include:

  • Access to personal data
  • Correction of inaccurate data
  • Deletion, also called the right to be forgotten
  • Restriction of processing
  • Data portability
  • Objection to processing based on legitimate interests
  • Withdrawal of consent, where processing is based on consent
  • The right to lodge a complaint with a supervisory authority

If EliteVerify processes data as a processor on behalf of a customer, we will support the customer in responding to requests as required by law, and we may direct the request to the customer where appropriate.

International transfers

If personal information is transferred across borders, we use appropriate safeguards consistent with applicable law, which may include standard contractual clauses, contractual commitments, and security controls designed to protect data in transit and at rest.

8. Zero Demographic Bias

EliteVerify is designed to avoid using protected demographic traits as inputs to risk scoring. We do not intentionally use race, ethnicity, religion, gender, or national origin to generate risk outcomes. Risk assessments are designed to rely on verified signals, behavioral indicators, and network intelligence tied to security relevant patterns, and on data provenance that can be traced back to source references where available and lawful.

We also design governance controls to reduce unfair outcomes, including data minimization, input validation, quality checks, and monitoring for anomalous patterns.

9. Third Party Sharing

We do not sell personal information, and we do not share it for cross context behavioral advertising.

We may disclose personal information in limited situations:

  • Service providers and sub-processors, such as identity verification vendors, hosting providers, security vendors, analytics providers, and customer support tools, but only as needed to provide services
  • Customer disclosures, where we provide reports and assessment outputs to the customer that requested the service, under contract
  • Legal disclosures, to comply with law, lawful requests, subpoenas, court orders, or to protect rights, safety, and security
  • Business transfers, in connection with a merger, acquisition, financing, reorganization, or sale of assets, with appropriate confidentiality and security protection

All vendors that handle personal information for EliteVerify are required to follow security and confidentiality obligations through written agreements, including data processing terms where required.

10. Cookies and Website Analytics

Our website and portals may use cookies and similar technologies for:

  • Essential functionality, such as session management, authentication, and security
  • Performance and analytics, to understand site usage and improve user experience
  • Preference storage, such as language settings and saved choices

You can control cookies through your browser settings and, where available, our cookie controls. Disabling certain cookies may affect site functionality. Some analytics data may be collected in aggregated or de identified form where feasible.

11. Children's Privacy

EliteVerify services are not directed to children under 18, and we do not knowingly collect personal information from children under 18. If we learn we have collected such information, we will take steps to delete it, subject to legal requirements.

12. Automated Processing and Human Review

RiskScore360 outputs may involve automated processing. In many customer programs, results are intended to support human decision making, not replace it. Where required by law, we support appropriate measures such as meaningful information about logic involved, and the ability to request human review through the customer, subject to program configuration and legal constraints.

13. Your Choices and Requests

Depending on your relationship with EliteVerify and applicable law, you may request access, correction, deletion, or other rights described above. For security, we may need to verify your identity before processing a request.

If you are an applicant or end user in a customer program, your request may need to be handled by the customer that initiated the assessment. We will assist as required by contract and law.

14. Changes to This Privacy Policy

We may update this Privacy Policy from time to time. When we do, we will revise the "Last Updated" date at the top. Material changes may be communicated through the website, portal notices, or customer communications, depending on the context.

15. Contact

For privacy related inquiries, data access requests, or concerns, contact:

Email: info@eliteverify.us
Address: Washington, D.C.