Privacy Policy
1. Scope
This Privacy Policy applies to the website operated at keyidentitypay.com (“the Site”) by KeyIdentity, Inc. (“KeyIdentity”, “we”, “us”). It describes what data we collect, why, how long we retain it, and how you may exercise your rights.
2. No Tracking by Default
This Site does not use cookies for tracking, analytics, or advertising. No third-party analytics scripts, pixel trackers, or behavioral profiling tools are loaded. No fingerprinting techniques are employed.
3. Data We Collect
We collect data in two categories:
3.1 Engagement Form Submissions
When you submit an institutional inquiry through the engagement form, the following fields are collected and stored:
- Organization name and institutional category
- Country of domicile
- Representative name, title, and institutional email address
- Nature of interest and preferred engagement language
This information is used exclusively for the purpose of evaluating and responding to institutional inquiries. It is not used for marketing, profiling, or automated decision-making.
3.2 Server Logs and Rate Limiting
Standard web server logs may record IP addresses, request timestamps, and HTTP headers for operational and security purposes. IP addresses are also used for rate limiting on the engagement endpoint (to prevent abuse). These records are not correlated with individual identities or used for behavioral analysis.
4. Data Retention
Engagement form submissions are retained for the duration necessary to evaluate and respond to the inquiry, and for a reasonable period thereafter to support institutional correspondence. Server logs are retained for a limited operational period (typically no longer than 90 days) and are then deleted or anonymized.
5. Access, Correction, and Deletion
You may request access to, correction of, or deletion of any personal data we hold about you. Requests should be directed to the contact address below. We will respond within 30 days of receipt. Where we are unable to comply with a request (for example, due to a legal retention obligation), we will explain the reason.
6. No Data Monetization
KeyIdentity does not sell, rent, license, or otherwise monetize any data collected through this Site. No data is shared with third parties for commercial purposes.
7. International Transfers
Data collected through this Site may be processed in jurisdictions other than the one from which it was submitted. Where such transfers occur, KeyIdentity ensures that appropriate safeguards are in place in accordance with applicable data protection requirements. No data is transferred to jurisdictions that lack adequate protections without supplementary measures.
8. Protocol-Level Privacy
The KeyIdentity Federation Protocol (KIFP) is designed with privacy-by-architecture principles. No biometric data is stored or transmitted by the Authorization Node. Federated Identity Keys are derived from one-way cryptographic hashes and cannot be reversed to recover the original identifier. Retailer-Scoped Authorization Tokens are ephemeral and merchant-bound, preventing cross-merchant correlation.
9. Accessibility
KeyIdentity is committed to ensuring this website is accessible to the widest possible audience. This Site is designed to conform to WCAG 2.1 Level AA guidelines:
- All text meets minimum contrast ratios (4.5:1 for body text, 3:1 for large text)
- Heading hierarchy follows sequential order without skipping levels
- All interactive elements are keyboard accessible
- Skip-to-content navigation is provided
- ARIA landmarks identify page regions
- Motion is suppressed for users who prefer reduced motion
- All form inputs have associated labels
If you encounter an accessibility barrier, contact: info@keyidentitypay.com
10. Changes to This Policy
KeyIdentity may update this Privacy Policy from time to time. Changes will be reflected by updating the effective date at the top of this page. Continued use of the Site after changes are posted constitutes acceptance of the revised policy.
11. Contact
For privacy-related inquiries: contact@keyidentitypay.com