CheckedID Privacy Statement                                version 2.1, January 2021

About us

JanusID B.V. (‘JanusID’, ‘we’, ‘us’ or ‘our’) is a Dutch company with offices at Benoordenhoutseweg 21, 2596 BA The Hague (NL) and registered under number 65206231 with the Dutch Chamber of Commerce. JanusID offers its customers a service for identity verification of natural persons called ‘CheckedID’. This service includes the CheckedID app.

This privacy statement governs the processing of personal data by CheckedID

Thank you, the user of the CheckedID app, for taking the time to read our privacy statement. Your privacy is important to us. Therefore, we deliver CheckedID in accordance to the European Union’s General Data Protection Regulation (‘GDPR’; known as ‘AVG’ in The Netherlands). We adopt Data Protection by Default and by Design as guiding principles. These principles mean that:

  1. We act solely as processor for our customers, who are the controller of the personal data concerned.
  2. We only process personal data when and insofar this is essential to deliver our services to customers.
  3. We permanently delete or anonymize any personal data processed by us as soon as it’s no longer required by the controller.
  4. All electronic communications are secured between sender and receiver, using appropriate encryption, checksums and authentication.
  5. We expect our customers to adhere to generally accepted data protection and privacy principles and specifically to GDPR.
  6. You may decline to use the CheckedID app. In that case you should contact the party that invited you (our customer) to learn about alternative identification methods.
  1. What data do we process?
  1. Depending on the instructions from our customer, we process some or all of the personal data from your ID document that you share with us through the CheckedID app. This may include:
  1. Full name (given names and surname)
  2. Sex
  3. Date of birth
  4. Place of birth
  5. Nationality
  6. Personal number
  7. Photo of holder on ID document
  8. Selfie photo of holder
  9. ID document number and type
  10. Dates of issue and expiry of ID document
  11. Issuing country/ authority of ID document
  12. Picture of ID document
  13. Specifics of right of residence
  14. Pictures of other personal documents
  15. Email address of holder
  1. We minimize the processing of personal data, both in frequency as in volume.
  2. We may also process your name and email address, as received from our customer.
  3. Your selfie is taken during a short capturing sequence using your device’s camera. The selfie will only be used by us for comparing your face to the picture on the ID document and to determine whether the selfie is taken from a live person.
  1. How do we process your data?
  1. CheckedID processes your data to verify your identity using Mitek Systems B.V. They are a sub-processor that provides industry leading services for mobile image capturing, identity document verification and biometric facial comparison and liveness detection. For this they will:
  2. We only process your name and email address to contact you for enabling the fulfilment of our services, and only if there is a specific need (e.g. to inform you about our terms of service, to respond to your technical or service queries, etc.). We will not contact you for unsolicited marketing purposes.
  1. When do we disclose your data?
  1. The data you provide us will not be disclosed to parties other then the controller and our sub-processors. See also article 4.c.
  2. We may disclose your personal data where we have a duty to share it to comply with any legal obligations or court orders.
  3. After the retention period you personal data can no longer be shared with anyone, because it’s then permanently deleted or anonymized. This period is set by the controller and may not exceed 28 days.
  1. Data security
  1. We operate a security policy that dictates that appropriate measures are implemented to ensure that your personal data is protected from accidental or unlawful disclosure, loss or modification.
  2. We host our services and process your data in the European Economic Area. If processing would take place in other countries this may only be done conformant to GDPR Chapter V (five).
  3. Each third party that we choose to engage with to deliver the CheckedID services will be assessed on their data protection and security practice. Each will have an agreement with JanusID stating the terms that apply to make use of our services. However, we do not actively monitor third parties handling of your personal data. If you suspect inappropriate handling of your data by a third party, you can inform us as indicated in article 7.
  1. Cookies

In case we use cookies, these will only serve to support us in optimally delivering our Websites. These cookies will not allow you to be tracked, profiled or targeted by third parties.

  1. Changes to this statement

We may update this Privacy Statement from time to time. Any revised statement will be published on our website https://www.janusid.nl and in the CheckedID app.

  1. Contact us

If you have any questions or concerns about this Privacy Statement, the practices of the Websites or Services, or your dealings with the Websites or Services, please contact us by emailing legal@janusid.nl.