Privacy Policy

Kredifi Privacy Policy

Effective Date: July 15, 2019

This Privacy Policy (“Policy”) describes how Kredifi, Inc. (“Kredifi” or “we” or “our”) collect, use, and share personal information when users access or use the Kredifi website located at https://www.kredifi.com and Kredifi’s products and services (the “Services”). This Policy does not address the privacy practices of any third parties that we do not own or control.

Please read this Policy and the Terms and Conditions carefully. By choosing to use our Services, you acknowledge and agree that your personal information may be used pursuant to this Policy. If you do not feel comfortable with any part of this Policy, you must not use or access our Services.

We reserve the right to change this Policy at any time. Please check this page periodically for changes. If we make any material changes to this Policy, we will provide you with notice by emailing the email address we have on file for you or by displaying a notice on our Services. If you do not agree with the changes, you should contact us and discontinue your use of the Services. Your continued use of the Services following the posting of changes to this Policy will mean you agree to be bound by those changes.

  1. Information We Collect

Through our Services, we collect personal information, which is information that, alone or in combination with other information, may be used to identify you. Below, we describe the personal information we may collect about you:

  1. Information You Provide To Use

We may collect information that users provide to us through the Services. For example, we may collect your name, email address, phone number, or other contact information when you contact us for a demo, access certain content, submit questions or comments, or request additional information about Kredifi or our Services.

  1. Customer Information

Customers are users who access or use our Services to screen or obtain information about individuals such as employees, applicants, or others (see section on Candidates below), we may collect the following information:

  • Account information, such as name, email address, and password;
  • Contact information, such as address and phone number;
  • Employer identification number, corporate and license information, and other business information; and
    Payment information, such as credit card or bank account information and billing address.
  1. Candidate Information

Candidates are users who will be subjects of screening or background checks, whether at their own request or at the request of a third party (such as an employer). With respect to candidates, we may collect the following information:

  • Account information, such as name, email address, and password;
  • Contact information, such as address and phone number;
  • Identity verification information, such as Social Security Number and date of birth; and
  • Additional information submitted to confirm identity or provide background, such as a photograph, drivers’ license, or official documents.
  1. Cookie and Usage Information

When you visit or use the Services, we automatically gather certain usage information, which may be gathered using cookies or similar tracking technologies. This usage information may include: IP address, device ID, device type, operating system or version, browser type, and referring and existing pages. For more information, please refer to our “Cookies” section below.

  1. Why We Collect Personal Information

We use personal information for the following purposes:

  1. To provide our Services, such as conducting screening or background checks;
  2. To send you service-related communications (i.e., communications related to your use of the Services, your account, or changes in our policies);
  3. To send you marketing communications (i.e., communications about offers and Services that may interest you);
  4. To provide customer support and respond to your inquiries;
  5. To promote our Services, i.e., through advertising;
  6. To conduct research and development to improve our Services;
  7. For internal record-keeping and legal and regulatory compliance purposes;
  8. To ensure the security of our Services, including addressing fraud or safety concerns and investigating or mitigating fraud or wrongdoing; or
  9. To protect you, us and other users.
  1. Information We Share

We may share your personal information in the following situations:

  1. Affiliates

We may share information with other companies in our corporate structure (“Affiliates”) for use as described in this Policy.

  1. Customers

We provide the requested screening and background check information to the customers who requested the information. For example, if an employer lawfully requests an Employment Eligibility Verification (Form I-9) and Social Security Number (SSN) validation, then we will provide the requested report pertaining to the employee to the employer. We may also share communication related to the requested information or report, such as notice of a dispute.

  1. Furnishers and Researchers

We may provide personal information of the candidate to entities that research and furnish data contained in screening and background check reports.

  1. Service Providers

We may provide access to your information to select third parties who perform services on our behalf. These third parties provide a variety of services for us, including without limitation: billing, fulfillment, data analysis and storage, identity verification, fraud prevention and mitigation, accounting, auditing, and legal services.

  1. Business Transfer

In the event of a merger, reorganization, consolidation, restructuring, bankruptcy, sale of substantially all interests or assets, or other similar transaction, we may transfer your personal information to the subsequent owner or operator of the Services.

  1. Legal Requirements

We will use and disclose information where we, in good faith, believe that the law or legal process (such as a court order, search warrant or subpoena) requires us to do so or in other circumstances where we believe it is necessary to protect the rights or property of us, our users, or other parties.

  1. Third-Party Partners

We may share certain personal and pseudonymized information with third-party partners, including to jointly offer a product or service to you or create interoperability between our products and services and theirs. For example, if you submit a public comment on our blog posts or other Services, we may share a pseudonymized identifier (i.e., hashed information based on your email address) with Gravatar to see if you are already using their services. If so, we may display your Gravatar profile picture publicly alongside your comment. To learn more about Gravatar’s privacy practices, please see their privacy policy here: https://automattic.com/privacy.

  1. Consent

We may disclose your information to third parties based on your authorization to do so.

  1. Cookies

  1. What are cookies?

Cookies are small text files containing a string of alphanumeric characters that are downloaded by your web browser when you visit a website. Like many online services, we and companies we work with may use cookies and similar technologies (including pixel tags, web beacons, and mobile identifiers) when you access and use the Services. Cookies are used to remember your user account information and your preferences, to customize the Services for you and to assist us in measuring and analyzing utilization of the Services.

  1. What types of cookies do we use?

We use the types of cookies described below on our Services:

Types of Cookies Description
Strictly Necessary Some of the cookies we use are necessary to provide our Services to you. For example, they help you: navigate from page to page; stay logged into your account; and support and enable security features.
Functional Functional cookies collect information about how you use our Services, provide you with certain functions on our Services, and remember your preferences.
Analytics, Performance and Research These cookies help us understand how well our Services are doing. They collect information about your use and interaction with our Services so that we can continue to improve and expand our Services.
Marketing Marketing cookies allow us to collect information about your interactions with our marketing activities, such as parts of our website and our emails. They help us measure performance of our Services and advertising campaigns.
  1. How to manage cookies

We use both first-party and third-party cookies that allow us to automatically collect information through our Services. Third-party cookies are operated by third parties that can recognize your device both when it visits our Services and when it visits other websites or mobile apps. We encourage you to check the websites of any third-party cookie providers for more information about how they use the information they collect.

Below we describe how you can manage first-party and cookies on our Services:

First-Party Cookies

You can enable, disable or delete cookies via your browser settings. To do this, follow the instructions provided by your browser, usually located within the “Help”, “Tools” or “Edit” settings of your browser or mobile device. Please be aware that if you set disable cookies on your browser, you may not be able to access secure areas of the Services and parts of the Services may also not work properly (e.g., preferences, referral links).

Many browser manufacturers provide helpful information about cookie management, including, but not limited to:

If you use a different browser than those listed above, please refer to your specific browser’s documentation or check out http://www.allaboutcookies.org/browsers/index.html to learn more about different browsers. You can also find out more information about how to change your browser cookie settings at www.allaboutcookies.org.

Similarly, many mobile devices allow you to manage cookies. To do this, follow the instructions provided by your mobile device, usually located in “Settings” of your mobile device. Many mobile device manufacturers provide helpful information about how to do this:

Third-Party Cookies

You may control third-party cookies that are placed on your browsing device through your browser (as described above). You may also check the third party’s website below for information about how they use cookies to collect and use your information, and how you may be able to opt out of tracking.

Third Party Tracking Purposes Website and Privacy Policy
Google Firebase Analytics To conduct usage and advertising analytics https://policies.google.com/privacy?hl=en-US
  1. Marketing

We may use your personal information to send you messages about new products and services, events, or other information that may be of interest to you, whether through email or other methods. If you do not wish to receive such information, you can change your account settings or click the “unsubscribe” button in email communications. Please note that you will not be able to opt out of receiving service-related communications (i.e., communications related to your use of the Services, your account, or changes in our policies); otherwise, you may miss important information about your account or the Services.

  1. Transfers of Your Information

Kredifi is located in the United States. When you access or use our Services, your personal information may be processed in the United States, or any other country in which we, our affiliates, service providers, or furnishers and researchers maintain facilities. Such countries or jurisdictions may have data protection laws that are less protective than the laws of the jurisdiction in which you reside. If you do not want your information transferred to, processed, or maintained outside of the country or jurisdiction where you are located, you should immediately stop accessing or using the Services.

If you are in the European Economic Area, United Kingdom, or Switzerland, please refer to the section below entitled Notice to Individuals in the European Economic Area, United Kingdom, and Switzerland.

  1. Accessing, Changing, and Deleting Information

Users should promptly update their contact information if it changes or is inaccurate. Users may review, access, change, or delete certain account information in their account or by contacting us.

  1. Retention

Our policy is to retain personal information only as long as reasonably necessary to provide the Services or as otherwise required for legal compliance purposes. For example, we may retain information, including from closed accounts, in order to comply with the law, prevent fraud, collect any fees owed, resolve disputes, troubleshoot problems, assist with any investigations of any user, enforce our Terms of Use, and/or for any other purposes otherwise permitted by law that we deem necessary in our sole discretion.

  1. Security

Kredifi maintains safeguards to help protect the security of information we maintain about you. We may use encryption, passwords, and physical security measures to help protect your information against unauthorized access and disclosure. Unfortunately, due to the nature of the internet, no systems are 100% secure. We rely on you to do your part in protecting against unauthorized access to your password, phone, and computer by, among other things, signing off after using a shared computer, choosing a robust password that nobody else knows or can easily guess, keeping your log-in and password private, and not recycling passwords from other websites or accounts. Kredifi is not responsible for the unauthorized use of your information nor for any lost, stolen, or compromised passwords, or for any activity on your account via unauthorized password activity.

  1. Children

You must be at least 18 years of age to use the Services. If you are under 18, you may not use our Services. We do not knowingly collect personal information of individuals under 18 years of age. If you are a parent or guardian, and believe that your child under the age of 18 has provided personally identifiable information to us through the Services, please contact us at the contact information listed below. If we discover that an individual under 18 has provided us with personal information, we will take steps to delete the account and any such personally identifiable information to the extent required by applicable law.

  1. Do Not Track

Some Internet browsers – like Internet Explorer, Firefox, and Safari – include the ability to transmit “Do Not Track” (“DNT”) signals. Since uniform standards for DNT signals have not been adopted, we currently do not process or respond to DNT signals on our Services.

  1. Your California Privacy Rights

California law permits California residents to ask us for a notice that identifies the categories of personal information that we share with our affiliates and/or third parties for marketing purposes, and that provides contact information for such affiliates and/or third parties. If you are a California resident and would like a copy of this notice, please submit a written request to us with your name, account information, and proof of California residence at the email below.

  1. Special Notice to Individuals in the European Economic Area, United Kingdom, and Switzerland

This section only applies to individuals located in the European Economic Area, United Kingdom, or Switzerland (collectively, the “Designated Countries”) at the time of their personal information was collected.

We may ask you to identify which country you are in when you use or access some of the Services, or we may rely on your IP address to identify which country you are located in. When we rely on your IP address, we cannot apply the terms of this section to any individual that masks or otherwise hides their location information from us so as not to appear located in the Designated Countries. If any terms in this section conflict with other terms contained in this Policy, the terms in this section shall apply to individuals in the Designated Countries.

  1. Our Relationship to You

Kredifi is a data controller with respect to any personal information collected under this Policy. A “data controller” is an entity that determines the purposes and the manner in which any personal information is processed. Any third parties that act as our service providers or are otherwise acting on our behalf that handle your personal information in accordance with our instructions are “data processors.”

  1. Legal Bases for Processing Your Personal Information.

Below is a list of the purposes described in this policy with the corresponding legal bases for processing.

Purpose for Processing Legal Bases for Processing
Section 2: Why We Collect Personal Information

  • 2(a) To provide our services
  • 2(b) To send you service-related communications
  • 2(d) To provide customer support and respond to your inquiries

Section 3: Information We Share

  • 3(a) Affiliates
  • 3(b) Customers
  • 3(c) Furnishers and Researchers
  • 3(d) Service Providers
Based on our contract with you or to take steps at your request prior to entering into a contract.
Section 2: Why We Collect Personal Information

  • 2(c) To send you marketing communications

Section 3: Information We Share

  • 3(g) Third-Party Partners
  • 3(h) Consent
Based on your consent.
Section 2: Why We Collect Personal Information

  • 2(g) For internal record-keeping and legal and regulatory compliance purposes
  • 2(h) To ensure the security of our Services

Section 3: Information We Share

  • 3(f) Legal Requirements
Based on our legal obligations.
Section 2: Why We Collect Personal Information

  • 2(i) To protect you, us and others
To protect your vital interests.
Section 2: Why We Collect Personal Information

  • 2(e) To promote our Services
  • 2(f) To conduct research and development to improve our Services
  • 2(g) To promote our Services

Section 3: Information We Share

  • 3(e) Business Transfer
Based on our legitimate interests.
  1. Marketing

We will only contact you if you are located in the Designated Countries by electronic means (including email or SMS) based on our legitimate interests, as permitted by applicable law or your consent. If you do not want us to use your personal information in this way, please click the unsubscribe link at the bottom of any of our email messages to you or contact us at the email in our contact information listed below. You can object to direct marketing at any time and free of charge.

  1. Transfer of Your Personal Information

We transfer your personal information subject to appropriate safeguards as permitted under the relevant data protection laws. The transfer of your personal information out of the Designated Countries is necessary for the performance of our contract with you, or the performance of a contract between us and another party that we entered into for your interest, or for important reasons of public interest. We may also rely on legal transfer mechanisms such as Standard Contractual Clauses or we work with U.S.-based third parties that are certified under the EU-U.S. and Swiss-U.S. Privacy Shield Framework.

  1. Individual Rights

We provide you with the rights described below when you use our Services. We may limit your individual rights requests: (a) where denial of access is required or authorized by law; (b) when granting access would have a negative impact on other’s privacy; (c) to protect our rights and properties; and (d) where the request is frivolous or burdensome. If you would like to exercise your rights under applicable law, please contact us at the contact information provided below. Please note, we may seek to verify your identity when we receive an individual rights request from you to ensure the security of your personal information. When we fulfill your individual rights requests for rectification, erasure or restriction of processing, we will notify third parties also handling the relevant personal information unless this proves impossible or involves disproportionate effort.

  • Right to Withdraw Your Consent. You have the right to withdraw your consent at any time.
  • Right of Access & Portability. You may request a copy of your personal information in our files without undue delay and free of charge, unless we are permitted by law to charge a fee. In certain situations, you may request to receive your personal information in a structured, commonly used and machine-readable format, and to have us transfer your personal information directly to another “controller,” where technically feasible.
  • Right to Rectification. You may request to correct or update any of your personal information in our files.
  • Right to Erasure. In certain situations, you have a right to have your personal information in our files deleted.
  • Right to Restriction. Under certain conditions, you have the right to restrict our processing of your personal information.
  • Right to Object. You may object to our processing at any time and as permitted by applicable law if we process your personal information on the legal bases of: consent; contract; or legitimate interests.
  • Automated Individual Decision-Making, Including Profiling. You have the right not to be subject to a decision based solely on automated processing of your personal information, including profiling, which produces legal or similarly significant effects on you, unless an exception applies under applicable law.
  • Right to Lodge Complaints. If you believe that we have infringed or violated your privacy rights under applicable law or this Policy, please contact us at the contact information below so that we can work with you to resolve your concerns. You also have a right to lodge a complaint with a competent supervisory authority situated in a Member State of your habitual residence, place of work, or place of alleged infringement.
  1. Contact Us

For any questions regarding our Privacy Policy or our privacy practices, please contact us at support@kredifi.com.

Customer

login_customer Login

Candidate

login_candidate Login