Your data, your rules.
This policy explains what data we collect, why, how we protect it, and the rights you have. We've written it plainly because we believe transparency is not optional.
Zero On-Chain PII
No personal data is ever written to the blockchain. Only cryptographic attestation hashes.
Minimal Collection
We collect only what's legally required for KYC/AML compliance — nothing more.
Time-Bound Retention
All personal data is deleted within 30 days of verification, unless regulation requires otherwise.
User Sovereignty
Your Soulbound NFT is yours. We cannot revoke, transfer, or hold it hostage.
Bridgekyc Ltd is a company registered in Missouri, USA that operates the Bridgekyc platform — a Web3 identity verification service that issues Soulbound NFTs as proof of KYC/AML compliance on Ethereum and Tron networks.
For the purposes of applicable data protection law (including the UK GDPR and EU GDPR), Bridgekyc Ltd is the data controller of the personal data collected through our platform.
Government-issued identity documents (passport, national ID, driver's licence), facial biometric data captured during liveness checks, full legal name, date of birth, nationality, and document number. This data is processed exclusively for KYC/AML verification and is not stored on any blockchain.
Email address provided during account registration, used for verification status notifications, credential expiry reminders, and essential service communications.
Public blockchain wallet addresses (Ethereum and/or Tron) that you connect to our platform. These are inherently public on their respective blockchains. We do not collect private keys or seed phrases under any circumstances.
IP address, browser type and version, device information, and usage analytics collected automatically when you access our platform. This data is used for security monitoring, fraud prevention, and service improvement.
Processing your identity documents and biometric data to perform KYC/AML compliance checks against global sanctions lists, politically exposed persons databases, and adverse media sources.
Upon successful verification, minting a Soulbound (non-transferable) NFT to your wallet address. The on-chain metadata contains only a verification level, expiry date, and attestation hash — zero personal data.
Fulfilling our legal obligations under applicable anti-money laundering, counter-terrorism financing, and sanctions regulations in the jurisdictions where we operate.
Sending credential expiry reminders (at 90, 30, and 7 days before expiry), verification status updates, and essential security notices. We do not send marketing emails.
Processing your data to perform the verification service you have requested and to mint your Soulbound NFT credential.
Processing required to comply with KYC/AML regulations, sanctions screening requirements, and other applicable financial regulations.
Processing for fraud prevention, platform security, and service improvement — balanced against your rights and freedoms through regular legitimate interest assessments.
Where required by law, we obtain your explicit consent before processing biometric data. You may withdraw consent at any time, though this may affect our ability to complete verification.
We apply strict, time-bound retention periods to all personal data. Our default retention policy deletes identity documents and biometric data within 30 days of successful verification. If verification fails, data is deleted within 7 days.
Identity documents and facial biometrics: 30 days post-verification. Email addresses: retained while your account is active plus 12 months. Sanctions screening logs: retained for the period required by applicable regulation (typically 5 years). Technical logs: 90 days. On-chain data (NFT attestation): permanent and immutable — contains no personal data.
Where local regulation requires longer retention (for example, EU AMLD requires 5 years for certain records), we comply with the longer period but apply additional access controls and encryption.
We do not sell, rent, or trade your personal data. We share data only in the following limited circumstances:
Identity document verification and liveness checks are processed by our certified verification partners, who act as data processors under binding contractual terms. They are ISO 27001 certified and process data in jurisdictions with adequate data protection standards.
Your Soulbound NFT is publicly visible on the blockchain by design. This is limited to your wallet address, verification level, and expiry date. Any smart contract can read your verification status by calling isVerified() — this is the core utility of the platform.
We may disclose data to law enforcement agencies where required by law, court order, or regulatory directive. We will notify you of such requests unless legally prohibited from doing so.
Under applicable data protection law, you have the following rights. To exercise any of these, contact us at the email address below.
Request a copy of all personal data we hold about you in a structured, machine-readable format.
Request correction of inaccurate personal data. Note that on-chain data (your NFT attestation) is immutable by design — rectification applies only to off-chain records.
Request deletion of your personal data. We will comply unless retention is required by law. On-chain attestation data cannot be deleted as it contains no personal information and is stored on a decentralised, immutable ledger.
Object to processing based on legitimate interest, or request restriction of processing while we assess your objection.
Where processing is based on consent (e.g., biometric data), you may withdraw consent at any time. Withdrawal does not affect the lawfulness of processing prior to withdrawal.
We implement technical and organisational measures appropriate to the sensitivity of the data we process:
All data in transit is encrypted with TLS 1.3. Data at rest is encrypted with AES-256. Biometric data receives additional field-level encryption with keys rotated every 90 days.
Strict role-based access. Identity documents are accessible only to the automated verification pipeline — no human employee can view your documents under normal operations.
ISO 27001 certified hosting. Regular penetration testing. Real-time intrusion detection. Immutable audit logs for all data access events.
Data written to Ethereum or Tron is permanent and cannot be modified or deleted by any party, including us. We have architected our system so that no personal data is ever written on-chain.
Your NFT is non-transferable per EIP-5192. It is permanently bound to the wallet address used during verification. If you lose access to your wallet, you may re-verify with a new wallet address.
Our smart contracts are verified and open-source on Etherscan and Tronscan. Anyone can audit exactly what data is stored on-chain.
Our platform is not intended for individuals under the age of 18. We do not knowingly collect or process personal data from minors. If we become aware that we have collected data from a person under 18, we will delete it immediately and revoke any associated credential.
We may update this Privacy Policy to reflect changes in our practices, technology, or legal requirements. Material changes will be communicated via email notification at least 30 days before taking effect. The "Last updated" date at the top of this page indicates when the most recent revision was published.
For privacy inquiries, data subject requests, or complaints, contact our Data Protection Officer at [email protected] or write to us at [email protected].
If you are unsatisfied with our response, you have the right to lodge a complaint with your local supervisory authority. For USA residents, this is the Information Commissioner's Office (ICO). For EU residents, contact your national data protection authority.
Full sovereignty off-chain.
If you have questions about this policy or want to exercise your data rights, we're here to help.