Privacy & Data Protection

1) Scope

This Privacy Policy describes how Pvaverify (“Pvaverify”, “we”, “us”, “our”) processes information in connection with our services, including non-VoIP numbers, temporary and rental numbers, our API, and the customer portal (collectively, the “Service”).

By using the Service you agree to this Policy. If you do not agree, please discontinue use.

2) Data We Collect

A. Information you provide

• Account data – username, password (hashed), contact details (e.g., email/Telegram), and profile settings.
• Billing data – payment confirmations from our payment processors and transaction records (we do not store full card details).
• Support – messages, tickets, or attachments you send us.

B. Information we process automatically

• Service metadata – number allocation IDs, service/route selected, timestamps, country selection, and status events needed to operate the Service.
• Message handling – when a verification code (OTP) is sent to a number we provide, our systems process the message so you can view it in your dashboard/API. We keep only the minimum necessary to deliver the Service and for fraud/abuse prevention, then delete or anonymize.
• Device & log data – IP address, user-agent, device type, and activity logs for security, troubleshooting, and analytics.

C. Information from partners

• Payment processors – confirmation of successful/failed payments and anti-fraud signals.
• Infrastructure providers – operational metrics (e.g., delivery success) to improve routing.

3) How We Use Data

• Provide, maintain, and improve the Service (portal, API, routing, delivery success).
• Authenticate users, secure accounts, and prevent fraud/abuse/spam.
• Process payments and manage billing and balances.
• Provide support and communicate important updates.
• Comply with legal obligations and enforce terms.
• Generate aggregate, de-identified statistics that do not identify you.

4) Legal Bases (GDPR/UK GDPR)

• Contract – to provide the Service you request.
• Legitimate interests – security, abuse prevention, service improvement, and usage analytics.
• Consent – where required (e.g., certain cookies/marketing).
• Legal obligation – to comply with law or enforce rights.

5) Sharing & Disclosures

• Service providers – hosting, routing/telecom partners, analytics, support tools, and payment processors, bound by data-processing terms.
• Legal & safety – to comply with law or protect rights, security, and users.
• Business transfers – in a merger, acquisition, or asset sale.

We do not sell personal information. We also do not share it for targeted advertising.

6) Cookies & Analytics

We use essential cookies for login and session security, and limited analytics to understand feature usage and reliability. You can set your browser to block cookies, but some features may not work.

• Essential – authentication, security, load balancing.
• Functional/analytics – product insights in aggregate form.

“Do Not Track” signals are not consistently honored by all services; we apply privacy-protective defaults where practical.

7) Security

We use administrative, technical, and physical safeguards to protect data, including encrypted transport (HTTPS), access controls, and logging. No method of transmission or storage is 100% secure; we strive to continuously improve.

8) Retention

We retain personal data only as long as necessary for the purposes in this Policy, including operating the Service, complying with legal obligations, resolving disputes, and enforcing agreements. Operational message data is retained for the minimum period needed to provide the Service and detect abuse, after which it is deleted or anonymized.

9) International Data Transfers

Your data may be processed in countries different from your own. Where required, we use recognized safeguards (e.g., Standard Contractual Clauses) to protect cross-border transfers.

10) Your Privacy Rights

• Access, correction, deletion – request a copy, correction, or deletion of your data where applicable.
• Portability – receive certain data in a portable format.
• Objection & restriction – object to or restrict certain processing.
• Consent withdrawal – where processing relies on consent.
• California (CPRA) – right to know, delete, correct, and to opt-out of sale/share (we do not sell); no discrimination for exercising rights.

To exercise rights, contact us using the details below. We may request verification to protect your account.

11) Children

The Service is not directed to children under the age required by local law (typically 13–16). We do not knowingly collect personal information from children. If you believe a child has provided data, contact us to request deletion.

12) Changes to this Policy

We may update this Policy to reflect changes to our practices. We will post the new date at the top and, where appropriate, provide additional notice.

13) Contact Us

Questions or requests about privacy?

• Email: [email protected]
• Telegram: t.me/pvaverify

Glossary

Personal data

Information that identifies or can reasonably identify a natural person.

Processing

Any operation performed on personal data (collection, storage, use, disclosure).

Controller

Entity that determines purposes and means of processing personal data.

Processor

Entity that processes personal data on behalf of a controller.

Operational message data

Technical content and metadata processed to deliver OTPs to your dashboard/API.

This document provides general information and is not legal advice. Your continued use of the Service constitutes acceptance of this Policy.