Invariant
Invariant
Get Started
Legal

Privacy Policy

Effective date: February 3, 2026

This Privacy Policy explains how Invariant collects, uses, shares, and protects information when you use our Services. We focus on minimizing data exposure and enabling privacy-preserving verification.

Privacy and partnerships
At a glance

We use data to verify liquidity, secure the platform, and provide audit trails. We do not sell personal information.

1. Information We Collect

  • Account and contact information (name, email, organization).
  • Verification session data (proofs, thresholds, metadata).
  • Usage data (API calls, audit logs, device and browser details).
  • Integration data from authorized providers, such as balance snapshots or account metadata.
  • Support communications and correspondence.

2. How We Use Information

  • Provide and improve verification services and dashboards.
  • Generate and validate zero-knowledge proofs.
  • Monitor for fraud, abuse, and security incidents.
  • Comply with legal obligations and enforce our Terms.
  • Provide customer support and respond to inquiries.

3. Legal Bases (EEA/UK)

Where GDPR applies, we process personal data based on one or more of the following: performance of a contract, compliance with legal obligations, legitimate interests (such as security), or your consent. We only use consent where required and you may withdraw it at any time.

4. Sharing and Disclosure

  • Service providers that help us operate our infrastructure and security.
  • Authorized parties you direct us to share verification outputs with.
  • Legal or regulatory authorities when required by law.
  • Business transfers in connection with a merger, acquisition, or asset sale.

We do not sell personal information or share it for cross-context behavioral advertising.

5. Data Retention

We retain information only as long as necessary to provide the Services, meet legal obligations, resolve disputes, and enforce our agreements. Verification sessions and audit logs may be retained for security and compliance purposes.

6. Security Measures

We use encryption, access controls, and monitoring to protect data. No system can be 100% secure; if we become aware of a data incident, we will act promptly and notify affected users as required by law.

7. International Transfers

We may process data in the United States or other jurisdictions. Where required, we use appropriate safeguards for international transfers.

8. Your Rights

Depending on your location, you may have rights to access, correct, delete, or restrict processing of your information, and to object to certain uses. California residents have specific rights under the CCPA, including the right to know, delete, and opt out of sale (which we do not do).

9. Cookies and Analytics

We use cookies and similar technologies to keep you signed in, understand usage, and improve performance. You can control cookies through your browser settings.

10. Children

The Services are not directed to children under 13, and we do not knowingly collect information from children.

11. Changes

We may update this Policy from time to time. We will post updates on this page and revise the effective date above.

12. Contact

Contact us at privacy@invariantdata.com with any questions or requests.