Brand Console

Privacy Policy

Last Updated: March 2026

1. Overview

Authentag respects user privacy and is committed to minimizing data collection.

We operate under a principle of: Minimal data collection + functional necessity only.

2. What We Collect

2.1 For End Users (Consumers) — When a user scans a tag, we may collect: timestamp, general request metadata (e.g., browser type), and approximate region (non-precise).

We DO NOT collect: IMEI or device identifiers; precise GPS location; personal identity (unless voluntarily provided); or persistent cross-site tracking data.

2.2 For Business Users — We may collect: account information, company details, product data submitted, and UID-related activity logs.

3. What We DO NOT Do

Authentag explicitly does NOT:

  • Build user profiles
  • Track individuals across services
  • Sell personal data
  • Use invasive fingerprinting techniques

4. Purpose of Data Use

We process data only to: enable UID resolution; deliver DPP information; provide authentication results; maintain system security; and improve system performance (aggregated only).

5. Data Architecture

Authentag follows a distributed data model: product data is typically controlled by business users; Authentag acts as access and presentation layer; data is not stored in a single centralized consumer database.

6. Data Sharing

We do NOT sell data. We may share data only when: required by law; necessary for system operation (e.g., hosting providers); or explicitly authorized by business users.

7. Cookies and Tracking

Authentag uses minimal cookies: session cookies (functional) only. No behavioral tracking cookies.

8. Data Retention

Consumer interaction data is minimized and retained only as necessary. Logs may be retained for security and audit purposes.

9. Security

We implement: secure access protocols; encryption where applicable; and controlled access to data.

10. International Use

Authentag operates globally. Data may be processed across jurisdictions, including the European Union, Asia, and other regions where services are hosted. We aim to align with GDPR principles and international data protection standards.

11. Your Rights

Depending on jurisdiction, users may have rights to: access data; request deletion; and restrict processing.

Requests can be sent to: privacy@authentag.io

12. Children's Data

Authentag services are not directed to children. We do not knowingly collect data from minors.

13. Updates

We may update this Privacy Policy. Continued use indicates acceptance.

14. Contact

privacy@authentag.io