This site uses cookies to store information on your computer, which provides functionality to our site and assists in providing our service. For more information see our Cookie Policy here. Please click "I Accept" to agree to our use of cookies.
Version: 6.3.0
Last updated: 2021-07-16
Document Reference: ID.me.S.00.030
In the event of any discrepancy between a non-English version of this Privacy Policy and the English version of this Privacy Policy, the English version (available at https://www.id.me/privacy) shall prevail in all respects. By accessing ID.me’s Services, you acknowledge and agree that you have been provided with, and agree to be bound by the terms of, this Privacy Policy, the ID.me Terms of Service and the ID.me Biometric Data Privacy Policy.
This Privacy Policy discloses the privacy practices for the ID.me credential service and website located at www.ID.me, the ID.me mobile application, or elements of ID.me’s technology platform (e.g., group affiliation widgets) present on its client’s websites (collectively referred to hereafter as the “Website”). ID.me, Inc., the provider of the Service and Website (referred to as “us” or “we”), is committed to protecting the privacy of individuals who navigate to, or otherwise use the Service and/or Website (hereafter, “Users” or “you”). The Service and Website offer eligible Users who create an account with an electronic identification resource (or “ID.me Account”) that allows eligible Users to verify their status as a member of an affinity group create accounts with websites that use the ID.me Account and access certain exclusive benefits, including without limitation, deals, discounts, cash back rebates and employment and educational opportunities, offered by participating retailers, service providers, employers or benefits administrators (collectively, the “ID.me Service”). Once Users have created an ID.me Account, the ID.me Account serves as a portable, single digital identity that those Users can utilize to generate an account and pre-populate the account with the User’s information and, thereafter, access the services, goods, rewards and/or benefits of various participating websites (including certain government agencies, retailers, service providers, employers, benefits administrators, etc.). Users are required to submit certain information to ID.me as part of the verification process so that we may ascertain the User’s identity, group affiliation, and determine other eligibility standards for the User tied to the ID.me Service. However, Users may choose what specific information (personally identifiable information and other forms of information as described in greater detail below) is tied to their ID.me Account, and at any time may revoke access to such information. In doing so, Users can control how much of that information is shared with other websites in relation to the ID.me Service. In certain cases the more information Users share the more rewards and benefits, such as deals, discounts, cash back rebates and employment and educational opportunities, the User may be eligible to receive, as further described in our Terms of Service (https://www.id.me/terms). However, certain participating websites may require that Users provide certain, minimum levels of information and a User’s refusal to provide such may impact his or her eligibility for the subject good, service, or benefit offered.
To avoid any confusion, Users should understand that, while we own and operate the Service and Website, we do not own or operate websites owned and operated by third parties who may avail themselves of the ID.me Service (collectively referred to hereafter as the “Third-Party Websites”). This Privacy Policy is intended to inform Users about our collection, use, storage, and disclosure, destruction and disposal of information that we collect or record in the course of providing the Website and the ID.me Service. Please note, we are not responsible for the privacy practices of Third-Party Websites and they are under no obligation to comply with this Privacy Policy. Before visiting Third-Party Websites, and before providing the User’s ID.me or any other information to any party that operates or advertises on Third-Party Websites, Users should review the privacy policy and practices of that website to determine how information collected from Users will be handled. Please further note, depending on a User’s particular interaction with us (e.g., Users who solely navigate the Website versus Users who create an account and use the ID.me Service at Third-Party Websites), different portions of this policy may apply to Users at different times.
If you are using the ID.me Service in connection with legal identity verification or a government agency we will not use your verification information for any type of marketing or promotional purposes.
Please read this Privacy Policy carefully. By accessing or using the Website, you acknowledge that you have read, understood, and agreed to be bound to all the terms of this Privacy Policy and the Website’s Terms of Service. If you do not agree to these terms, exit this page and do not access or use the Service or Website.
If we decide to change this Privacy Policy, we will post those changes to this page so that you are aware of what information we collect, how we use it, and under what circumstances, if any, we disclose it. We reserve the right to modify this Privacy Policy at any time, so please review it frequently. If we make material changes to this policy, we will notify you here, by email, or by means of notice on our home page.
We collect three types of information from and about Users: Personally Identifiable Information, Sensitive Information, and Non-Personally Identifiable Information.
We do not automatically collect any Personally Identifiable Information or Sensitive Information without your consent. When you create an account to obtain an ID.me Account and use the ID.me Service, you will be asked to provide certain Personally Identifiable Information and Sensitive Information so that we can verify your identity and attributes of your identity including, but not limited to, group affiliations (e.g., Military, First Responder, Student, Veteran, etc.), memberships, social media accounts, educational degrees, and professional certifications.
“Personally Identifiable Information” is information that identifies a specific individual, including, without limitation, first and last name, mailing address, e-mail address (including, without limitation, .mil e-mail address), telephone number, social security number, date of birth and photographic images. We collect this information through a variety of means, which may include from your identity documents, text you input and/or images and selfies we ask you to provide. We will only share your Personally Identifiable Information to the extent necessary to allow us to manage our relationship with you.
In addition, you may be asked to provide certain further information or documentation that we will use to verify your eligibility to receive discounts and benefits from organizations and registration authorities such as government agencies, telecommunications networks, credit card bureaus, financial institutions, or authoritative agents with access to your group affiliation credentials, military records (which may also contain Personally Identifiable Information)(collectively, “Registration Authorities”), your spouse’s or immediate family member’s social security number, military affiliation(s), dates of active and reserve duty service, and information related to your accounts with financial institutions (“Sensitive Information”).
The decision to share specific items of your Personally Identifiable Information and/or Sensitive Information with the ID.me Service or opportunities offered by Third-Party Websites which are conditioned upon certain eligibility requirements is yours and yours alone. This is also true for any Third-Party Websites in connection with your participation, if applicable, in the ID.me Cash Back Program and with certain aspects of the ID.me Service, including certain deals, cash back rewards, offers. You can elect to provide all or only some of the information requested by the Website during the registration process and at any time you may decide to remove some of the information that you previously provided. However, if you decline to provide any of the above information, you may not be able to register for an ID.me Account or to access certain benefits of the ID.me Service (including certain deals, cash back rewards, offers or opportunities offered by Third-Party Websites which are conditioned upon certain eligibility requirements). In addition to using your Personally Identifiable Information and Sensitive Information to provide the ID.me Service, we may also use this information to troubleshoot, resolve disputes, accomplish administrative tasks, contact you, enforce our agreements with you, including the Website’s Terms of Service and this Privacy Policy, comply with applicable law, and cooperate with law enforcement activities. Furthermore, we reserve the right to audit your eligibility (e.g., group affiliations such as active duty military or student status); to audit user accounts for fraud by, for example, verifying that purchases, upgrades, or benefits (both tangible and intangible) are delivered to registered user addresses or used by the registered user and not otherwise resold, transferred, or distributed by Users for their personal, financial gain; and to prevent duplicate ID.me Accounts from being created with the same information.
Identifiable Information is information that does not identify a specific User. This type of information may include things like the Uniform Resource Locator (“URL”) of the website you visited before coming to the Website, the URL of the website you visit after leaving the Website, the type of browser you are using, your Internet Protocol (“IP”) address, occupation, language, unique device identifier, approximately geographic location, and time zone. We do not provide our authorized Third-Party Service Providers or advertisers with any Non-Personally Identifiable Information from you if you are using the ID.me Service in connection with any government agency or for verification of your legal identity. If you are using the ID.me Service with respect to ID.me Shop, we, and/or our authorized Third-Party service providers and advertisers, may automatically collect this information when you visit our Website through the use of electronic tools like Cookies and Web beacons or Pixel tags or location based capabilities on your mobile device, including those described in Items 4 and 8 of this Privacy Policy. We use Non-Personally Identifiable Information to troubleshoot, administer the Website, analyze trends, gather demographic information, comply with applicable law, and cooperate with law enforcement activities. Solely with respect to ID.me Shop, we may also share this information with our authorized Third-Party service providers and advertisers to measure the overall effectiveness of our online advertising, content, and programming. In certain limited instances, we may combine certain Non-Personally Identifiable Information with other identifiers in order to confirm your identity as part of the ID.me verification process. For example, we may combine an approximate geographic location obtained from a User’s mobile device and match it with address information the User voluntarily submitted to the Website in order to confirm the User’s identity and prevent fraudulent conduct. Notwithstanding, this information would still be considered Non-Personally Identifiable Information when it is taken alone or combined only with other non-identifying information (for example, the type of web browser used by the User).
In order to better serve members of America’s Armed Forces and other personnel covered by the Service Members Civil Relief Act (SCRA) (50 U.S.C. App. 501 et. seq.)*, ID.me provides services to Financial Services companies and Third-Party Websites in order to facilitate their compliance with the provisions of SCRA. By joining ID.me, you agree that ID.me may use your personal information in order to assist Financial Services companies and Third-Party Websites to determine your eligibility or your family member’s eligibility for SCRA benefits and protections. ID.me may periodically use your personal information to confirm your SCRA eligibility or your family member’s eligibility at a later point in time to inform third parties of any changes to your SCRA eligibility status. Source of this information may include, but are not limited to, publicly available websites, physical documentation, financial information, ID.me’s network or third parties that have a relationship with ID.me.
*The scope of ID.me’s SCRA services includes all individuals protected by the SCRA (i.e. personnel serving in the United States Armed Forces, commissioned officers of the Public Health Service and the National Oceanic and Atmospheric Administration, U.S. citizens serving with the armed forces of nations allied with the United States, and, where applicable according to federal or state laws and regulations, dependents and family members of an individual protected under the SCRA.
We will not share, sell, rent, or trade your Personally Identifiable Information or Sensitive Information with other parties, except to verify your identity and eligibility or upon receipt of your consent as provided below:
We will share your Personally Identifiable Information and Sensitive Information with entities necessary to validate your ID.me Account and provide the ID.me Service to you. In order to verify your identity and eligibility to receive discounts, cash back rebates and other benefits from merchants and other service providers, we will provide your Personally Identifiable Information and Sensitive Information to third parties such as government agencies, telecommunications networks, financial institutions or other trusted and reliable sources of information. Our provision of your Personally Identifiable Information to the foregoing parties is solely to verify your identity and eligibility for the ID.me Service. We have established relationships with Registration Authorities similar to the entities described above whereby the Personally Identifiable Information and Sensitive Information you provide to us will be transmitted to them using industry standard encryption tools, designed to protect such information from unauthorized access.
By providing any personally identifiable information and sensitive information to us, you authorize ID.me to provide such information to the above Registration Authorities and other trusted entities in order to verify your identity and eligibility to receive discounts, cash back rebates and benefits. We will share certain Personally Identifiable Information tied to your ID.me Account (including the ID.me Cash Back Program) with Third-Party Websites where you grant us permission to do so by creating an account with the Website and utilizing your ID.me Account to access and use Third-Party Websites (including, without limitations, use of your ID.me to create an account, register or subscribe with a Third-Party Website). We do not share your Personally Identifiable Information or Sensitive Information with Third-Party Websites absent your permission. However, by utilizing your ID.me Account at Third-Party Websites, you are expressly authorizing us to share certain Personally Identifiable Information or Sensitive Information tied to your ID.me Account with such Third-Party Websites. The ID.me Service is intended to allow you to create a membership or profile with a Third-Party Website and/or engage in a transaction with a Third-Party Website by automatically transferring Personally Identifiable Information or Sensitive Information. This transfer of Personally Identifiable Information and/or Sensitive Information tied to your ID.me Account is necessary to verify your eligibility to receive benefits or discounts from various organizations, and to communicate such eligibility to Third-Party Websites. The information ID.me shares with Third-Party Websites will be limited to the Personally Identifiable Information and/or Sensitive Information that ID.me, at its sole discretion, deems necessary to complete the transactions described herein. You will have the opportunity to review the information required to complete a transaction before your information is released to a Third-Party Website. Absent your explicit permission, ID.me will never give Third-Party Websites access to any or all of your information tied to your ID.me Account. In using the ID.me Service, Users have the ability to control which Third-Party Websites are provided with their Personally Identifiable Information and Sensitive Information. We will not share a User’s Personally Identifiable Information and Sensitive Information with a Third-Party Website unless the User authorizes such sharing by using his or her ID.me account to register with the Third-Party Website or to authorize the Third-Party Website’s access to his or her information.
We may share your information with Authorized Third Party Service Providers.
We provide certain services and products of the Website through Third-Party service providers. These “Third-Party Service Providers” perform functions on our behalf, such as sending out and distributing our administrative and promotional emails. We may share your Personally Identifiable Information with such Third-Party Service Providers to remove repetitive information on customer lists, analyze data, provide marketing assistance, provide search results and links, process credit card payments, operate the Website, troubleshoot, and provide customer service. We may also collect personal information from individuals and companies (“Affiliates”) with whom we have business relationships and may share your information with Third-Party Service Providers to accomplish our administrative tasks. However, we do not grant these entities any rights to use, and contractually restrict them from using, any information for any purpose other than providing services to us and to you. ID.me shall never sell your information to any entity for any reason.
We may share your information in a business transfer.
As with any other business, we could merge with, or be acquired by, another company, or we may file for protection under applicable bankruptcy laws in the future. In such an event, Users information obtained and maintained by the Website, including Personally Identifiable Information, Sensitive Information and Non-Personally Identifiable Information, will transfer to a successor entity in connection with the corporate merger, consolidation, sale of assets, bankruptcy, or other corporate change. User information submitted prior to any such transfer would remain subject to the terms of this Privacy Policy (as it existed on the date of the submission). However, User information submitted after a transfer to a successor entity may be subject to a new Privacy Policy adopted by the successor entity.
We may share your information to protect you, for our protection and the protection of others.
We reserve the right to disclose your Personally Identifiable Information as required by law and when we believe that disclosure is necessary to protect you, our rights and/or comply with a judicial proceeding, court order, or legal process served on us or our Website; enforce or apply this Privacy Policy, our Website Terms of Use or other agreements; or investigate, prevent, or take action suspected or actual prohibited activities, including but not limited to, fraud and situations involving potential threats to the physical safety of any person or to prevent financial loss to any person or entity; or otherwise protect the rights, property or safety of the Website, its Users or others.
We access, preserve and share your information with regulators, government agencies, law enforcement and other third parties if we have a good faith belief:
Information we receive about you can be accessed and preserved for an extended period when it is the subject of a legal request or obligation, governmental investigation, or investigations of possible violations of our terms or policies, criminal and other investigations, or otherwise to prevent harm. We also retain information from accounts disabled for violations of our terms for at least a year to prevent repeat abuse or other term violations.
If you access the ID.me Service with respect to ID.me Shop, we may disclose or share Non-Personally Identifiable Information with Third-Party Service Providers and Affiliates. For example, we may share aggregated demographic information (which does not include any Personally Identifiable Information or Sensitive Information) with “Third-Party Advertisers” or “Third-Party Advertising Companies” and other parties as provided below:
We may use Third-Party Advertising Companies to serve ads when you visit our Website. These companies may use Non-Personally Identifiable Information about your visits to this and other websites in order to provide, through the use of network tags, advertisements about goods and services that may be of interest to you. Some of these Third-Party Advertising Companies may be advertising networks that are members of the Network Advertising Initiative (“NAI”). If you would like more information about any NAI member company, or you would like to opt-out of targeted advertising from any NAI member company, click here: http://www.networkadvertising.org/consumer/opt_out.asp. We also use Third-Party Service Providers to track and analyze Non-Personally Identifiable usage and volume statistical information from our Users to administer our Website and constantly improve its quality. We may also publish this information for promotional purposes or as a representative audience for Advertisers. Please note that this is not Personally Identifiable Information or Sensitive Information as defined above, only general summaries of the activities of our Users. Such data is collected on our behalf, and is owned and used by us.
We do not provide our authorized Third-Party Service Providers or advertisers with any Non-Personally Identifiable Information from you if you are using the ID.me Service in connection with any government agency or for verification of your legal identity.
We believe that you should have the ability to access and edit the Personally Identifiable Information and Sensitive Information you provide us. You may change any of your Personally Identifiable Information or Sensitive Information by logging into your account and accessing the "my account" section of the site. You may update your Personally Identifiable Information or Sensitive Information by sending us an email at help@id.me or writing to us at 8281 Greensboro Drive, Suite 600, McLean, VA 22102. Please indicate your name, address and email address, and what information you would like to update when you contact us.
We encourage you to promptly update your Personally Identifiable Information and Sensitive Information if they change. You may ask to have the information on your account deleted or removed; however, we may keep track of certain information if required by law. In addition, it may be impossible for us to completely delete all of your information because we periodically back-up information.
Personal information will be retained until we have fulfilled ID.me’s legal, contractual and policy obligations. Currently, in order to fulfill these obligations, our retention policy is the duration of your relationship with ID.me plus seven and a half years.
In the event that ID.me’s services are no longer available, ID.me will make commercially reasonable efforts within its power to protect and/or securely destroy your personal information in accordance with applicable legislation.
While we hold your personal information, we use approved industry-recognized encryption methods to protect it from unauthorized access. Likewise, when we destroy your personal information, we use industry-recognized methods to effect such destruction.
As discussed above, you can always choose not to provide information, although it may be required to use all or parts of the ID.me Service, including the ID.me Marketplace.
Except as otherwise provided herein, if you register for an account with, or log into, the ID.me Service, including the ID.me Marketplace, you are expressly consenting to receive emails (namely, Administrative Emails and Promotional Emails, as defined below) from us at the email address supplied by you. However, we will not send you Promotional Emails if you have signed up through a Third-Party Website, unless you expressly consent to receive such emails or you separately register or log in as a user of the ID.me Service, including the ID.me Marketplace.
“Administrative Emails” relate to a User’s activity with the ID.me Service, and include emails regarding the User’s account, enhancements to the ID.me Service, requests or inquiries by the User, earned cash back rebates, and purchases of products and services. We may also send you Promotional Emails. “Promotional Emails” advertise our products and services, including government benefits and services available to you, sales and other offers by Third-Party Websites, such as cash back rebate promotions, employment and educational opportunities, and/or the products and services of our Third-Party Websites, Third-Party Service Providers and Affiliates.
You cannot opt-out of Administrative Emails. However, you have the ability to opt-out from receiving Promotional Emails.
If you want to opt out of receiving Promotional Emails from us, you must email us at feedback@id.me, write to us at the address contained herein, or click the “unsubscribe” button at the bottom of any of our emails and complete any additional steps required in response thereto. When contacting us, please indicate your name, address, email address, and indicate whether you no longer wish to receive all or certain Promotional Emails.
We take security seriously and take numerous precautions to protect the security of Personally Identifiable Information. You can access your Personally Identifiable Information and Sensitive Information on our Website through a password and your email address. This password is encrypted. We recommend that you do not share your password with anyone. In addition, your Personally Identifiable Information and Sensitive Information reside on a secure server to which only select personnel and contractors have access.
Unfortunately, no data transmission over the Internet or any wireless network can be guaranteed to be 100% secure. As a result, while we employ commercially reasonable security measures to protect data and seek to partner with service providers that do the same, we cannot guarantee the security of any information transmitted to or from the Website, and are not responsible for the actions of any third parties that may receive any such information.
To facilitate and customize your experience with the Website, we store cookies on your computer. A cookie is a small text file that is stored on a User’s computer for record-keeping purposes which contains information about that User. We use cookies to save you time while using the Website, remind us who you are, administer cash back rebates, and track and target user interests in order to provide a customized experience. Cookies also allow us to collect Non-Personally Identifiable Information from you, like which pages you visited and what links you clicked on. Use of this information helps us to create a more user-friendly experience for all visitors. In addition, we may use Third-Party Advertising Companies to display advertisements on our Website. As part of their service, they may place separate cookies on your computer. We have no access to or control over these cookies. This Privacy Policy covers the use of cookies by the Website only and does not cover the use of cookies by any Third-Party Website, Third-Party Service Provider or Affiliate. Most browsers automatically accept cookies, but you may be able to modify your browser settings to decline cookies. Please note that if you decline or delete these cookies, some parts of the Website, including our Cash Back Program, may not work properly.
We may use other industry standard technologies like pixel tags and web beacons to track your use of our Website pages and promotions, or we may allow our Third-Party Service Providers to use these devices on our behalf. Pixel tags and web beacons are tiny graphic images placed on certain pages on our Website, or in our emails that allow us to determine whether you have performed a specific action. When you access these pages or open or click an email, pixel tags and web beacons generate a Non-Personally Identifiable notice of that action. Pixel tags allow us to measure and improve our understanding of visitor traffic and behavior on our Website, as well as give us a way to measure our promotions and performance. We may also utilize pixel tags and web beacons provided by our Affiliates and/or Marketing Partners for the same purposes. The Website is not presently configured to respond to DNT or “do not track” signals from web browsers.
This Privacy Policy only addresses the use and disclosure of information we collect from you on www.ID.me. Other websites, including Third-Party Websites, may be accessible through this Website have their own privacy policies and data collection, use and disclosure practices. If you link to any such website, we urge you to review such website’s Privacy Policy. We are not responsible for the policies or practices of third parties.
If you have questions or complaints regarding our privacy policy or practices, please contact us at privacy@id.me.
Minors under the age of 18 may not use the Website. We do not knowingly collect personal information from anyone under the age of 18, and no part of the Website is designed to attract anyone under the age of 18. Because we do not intentionally collect any information from children under the age of 18, we also do not knowingly distribute such information to third parties. If you have reason to believe that a child under 18 years of age has provided us with information, please contact us at support@id.me and we will immediately delete such information, subject to and in compliance with applicable law.
We may provide areas on the Website where you can publicly post information about yourself, can communicate with others (such as discussion boards or blogs), or can review products, and submit media content. This information may be accessible by other consumers and companies, and may appear on other websites or web searches; therefore this information could be read, collected, and used by others. For example, if you post your email address along with a product or service review, you may receive unsolicited messages from other registered users. We have no control over who reads your postings or what other Users may do with the information you voluntarily post, so please use caution when posting any personal information. We do obtain consent from our Users to post their name along with their reviews.
The ID.me Website allows users to access Facebook Connect to interact with friends and to share on Facebook through Wall and friends' News Feeds. If you are logged into ID.me and Facebook, when you click on "Connect with Facebook" your profiles will merge if the email addresses match. If the email addresses do not match, we ask you if you want to merge them and you must enter your ID.me password to validate that you control that account. If you are already logged into ID.me but not logged into Facebook, when you click on "Connect with Facebook" you will be prompted to enter your Facebook credentials or to "Sign up for Facebook." By proceeding, you are allowing the ID.me Website to access your information and you are agreeing to the Facebook Terms of Use in your use of the ID.me Website.
Conversely, if you are not currently registered as an ID.me user and you click on "Sign in Using Facebook," you will first be asked to enter your Facebook credentials and then be given the option to register and join ID.me. Once you register on the ID.me Website and Connect with Facebook, you will be able to automatically post recent activity back to Facebook. You have the option to disable Facebook Connect at any time by logging into "My Profile" and clicking on "My Facebook Profile." Further, you can edit privacy settings for the reviews that appear on Facebook or disconnect this service by visiting the Facebook Application Settings page.
If a User uses Facebook Connect, depending on the privacy settings that the User has set on his or her Facebook account, the User will be granting us access to the information accessible via that Facebook Account and we will access, make available and store (if applicable and as permitted by Facebook and authorized by the User via his or her Facebook account setting) that information so that it is available on and through the User’s Account on the Website. If there is information about the User’s "friends" or people with whom the User is associated via the Facebook account, the information we obtain about those "friends" or people with whom the User is associated, may also depend on the privacy settings such people have with Facebook.
Rights Under the California Consumer Privacy Act
ID.me’s Privacy Policy (“Privacy Policy”) includes this California Privacy Notice (“Notice”), which contains the disclosures required under the California Consumer Privacy Act (“CCPA”). For individuals who are California residents, the CCPA requires certain disclosures about the categories of personal information we collect and how we use it, the categories of sources from whom we collect personal information, and the third parties with whom we share it. You have also the right to exercise certain rights regarding your personal information.
Please note that for California residents, the term “personal information” means information that identifies, relates to, describes, is reasonably capable of being associated with or could reasonably be linked, directly or indirectly, with a particular consumer or household as defined in the CCPA. All other capitalized terms have the same meanings as given them in the Privacy Policy.
Subject Requests
Subject to certain exceptions, if you are a California resident who has provided personal information to ID.me, or a California resident that reasonably believes that ID.me has collected or stored their personal information, you have the right to make the following requests, at no charge, up to twice every 12 months.
Right to Know
You have the right to request that ID.me disclose certain information about how we have handled your personal information in the prior 12 months, including the:
Right to Request Deletion
According to the Act, you may request that your Personally Identifiable Information be deleted. We will comply with this request once we are able to confirm that we received a verified consumer request. Please be advised that we may deny your request to delete your Personally Identifiable Information if we need to maintain your Personally Identifiable Information in order to (1) complete a transaction, provide service or goods, or perform a contract for which the Personally Identifiable Information is collected; (2) detect any security incidents, protect against malicious, deceptive, fraudulent, or illegal activity; or prosecute those responsible for these activities; (3) debug products and to identify and repair errors that impair functionality of the Service or Website; (4) exercise free speech, ensure the right of another consumer to exercise his or her right of free speech, or exercise another right provided by law; (5) comply with the California Electronic Communications Privacy Act (Cal. Penal Code § 1546 seq.); (6) engage in public or peer-reviewed scientific, historical, or statistical research in the public interest that adheres to all other applicable ethics and privacy laws, when the information’s deletion may likely render impossible or seriously impair the research’s achievement, if you previously provided informed consent; (7) enable solely internal uses that are reasonably aligned with consumer expectations based on your relationship with us; (8) comply with a legal obligation; or (9) otherwise use your Personally Identifiable Information, for internal use only, that is compatible with the context in which you provide the Personally Identifiable Information.
Right to Request Copies
You have the right to request a copy of the specific pieces of personal information that we have collected about you in the prior 12 months.
Right to Opt-Out
According to the Act, you have the right to opt-out of the sale, disclosure, release, transfer or dissemination (collectively, “sale”) of your Personally Identifiable Information. While we do not sell your Personally Identifiable Information, we will share such information with third parties with your explicit consent as set forth in our Terms of Use and Privacy Policy. We will respect and honor your request to opt-out of the sale of your Personally Identifiable Information, but please be advised that you may not be eligible to receive discounts, cash back rebates and other benefits from merchants and other service providers because they will not be able to verify your identity and/or eligibility.
Use of Personal Information for Business Purposes or Commercial Purposes
We may use or disclose personal information we collect for “business purposes” or “commercial purposes” (as defined under the CCPA), which may include the following examples. The examples provided are illustrative and not intended to be exhaustive.
We may disclose your personal information to the following categories of other parties for an operational purpose, or for a business purpose or commercial purpose, as those terms are defined in the CCPA. Details are provided in the CCPA notice below, but we may disclose your personal information as described in this Notice and our Privacy Policy, including:
If we decide to collect additional categories of personal information or use the personal information we collected for materially different, unrelated, or incompatible purposes we will update this Notice along with our Privacy Policy.
In response to a verified consumer request to know what personal information was collected or sold, we will investigate and provide an individualized response to the consumer, which will include the business or commercial purpose for collecting and/or sharing that information. We will not merely refer the consumer to our general practices outlined in this Notice or Privacy Policy unless our response would be the same for all consumers and this Notice or our Privacy Policy discloses all the information that is otherwise required for the response to such a consumer request.
Methods For Submitting Request
You may submit Requests to Know and Requests to Delete in one of the following methods: (a) by submitting a request online through your ID.me member account; (b) sending an email to privacy@id.me; or (c) by calling the following toll free number 866-775-IDme (4363).
Verification of Requests
We will need to verify your identity to respond to Requests to Delete and Requests to Know. If you have an account with us that is password-protected, we may verify your identity through our existing authentication practices for your account.
If you do not have an account with us, and your request concerns “categories” of personal information collected, we can request from you two data points of personal information to verify your identity. If you do not have an account with us, and your request concerns specific pieces of personal information, we can request from you at least three data points of personal information as well as a signed declaration with penalty of perjury to verify your identity.
If a request concerns household information, and the household does not have a password-protected account with us, we will not comply with a Request to Know specific pieces of personal information about the household or a request to delete household personal information unless all of the following conditions are satisfied: (1) All consumers of the household jointly request access to specific pieces of information for the household or the deletion of household personal information; (2) we have individually verified all the Users of the household under the CCPA; and (3) we have verified that each User making the request is currently a member of the household.
Time for Response
Please note that once you have submitted a Request to Know or Request to Delete, we will send you a receipt, acknowledging your request, within 10 business days. If, for some reason, you do not receive such a receipt within 10 days of your submitted request, please send us an email to privacy@id.me as an error may have occurred.
We use good faith efforts to respond to a verifiable consumer request within 45 days after its receipt. If we need more time (up to 90 days), we will inform you of the reason and the needed extension period in writing. If we cannot verify you within the 45 day time period, we may deny the request. If necessary, we may take up to an additional 45 calendar days to respond to the consumer’s request, for a maximum total of 90 calendar days from the day the request is received, provided that we will provides you with notice and an explanation of the reason that we will take more than 45 days to respond to the request.
In the case of a Request to Delete, we may use a two-step process for online requests to delete where you must first, submit the Request to Delete and then second, separately confirm that you want your personal information deleted.
Notice of Opt-Out
You have the right to opt-out of the sale of your personal information by us. To exercise this right, you can either (1) log into your account and make such a request, or (2) send an email with such a request to privacy@id.me. We will comply with a Request to Opt-out as soon as feasibly possible, but no later than 15 business days from the date we received the request.
Authorized Agent
As a California resident, you have the right to designate an agent to exercise these rights on your behalf using the procedures set forth herein. The authorized agent must specify the individual on whose behalf it is making the request. Before acting on this request, we may require that you provide signed permission to act on your behalf (or provided a Power of Attorney under Probate Codes sections 5000 to 4465), verify your own identity directly with us, and directly confirm that you have provided the authorized agent permission to submit the request. We may deny the request from an authorized person that does not provide proof that they are authorized to act on your behalf. Please contact us at privacy@id.me for more information if you wish to submit a request through an authorized agent.
Notice of Financial Incentives
Our partners may offer you certain financial incentives permitted by the CCPA that can result in different prices, rates, or quality levels. Any CCPA-permitted financial incentive offered to you by our partners will reasonably relate to your personal information's value and contain written terms that describe the program's material aspects. Participation in a financial incentive program requires your prior opt in consent directly with our partners, which you may revoke at any time.
Exercising your CCPA Rights.
To request (a) information about your Personally Identifiable Information collected or (b) deletion of your Personally Identifiable Information, please log into your account and make such a request, or send a request by email to privacy@id.me or standard mail to the address found below.
We can only respond to verifiable consumer requests. A verifiable consumer request means a request that is made by consumer, by a consumer on behalf of a consumer’s minor child, or a person registered with the California Secretary of State that is authorized to act on your behalf. Your verifiable consumer request must include (1) sufficient information that allows us to verify your identity or provides sufficient authority to make the request; and (2) describes your request with enough detail to evaluate and respond to your request. We will not respond to any requests if we cannot verify your identity or authority to make the request and confirm that the personal information belongs to you. You are not required to create an account in order to make a verifiable consumer request. We are not required to comply with more than two verifiable requests from the same consumer in a 12-month period of time.
Please allow 45 days to complete your request. We will inform you if more time is required to complete, but it should take no longer than 90 days. If you have an account, we may provide our response to your account. If you do not have an account, we will provide our response according to your requested format, namely, electronically or by mail. Please note that there is no charge for making a request, but we reserve the right to charge a fee if the request is deemed excessive, repetitive, or manifestly unfounded. We will notify you of any fee and reasons for such fee before completing your request.
Non-Discrimination.
We will not discriminate against you because you exercised your rights under the CCPA including: (1) denying goods or services; (2) charging different prices or rates for goods or services through discounts, benefits, or imposing penalties; (3) providing different level of quality of goods or services; or (4) suggesting that you will receive a different price, rate, quality, or level of goods or services.
Please note that if you do exercise your CCPA rights, you may not be eligible to receive discounts, cash back rebates and other benefits from merchants and other service providers since they will not be able to verify your identity and/or eligibility.
Notice at Collection
Pursuant to California Civil Section 1798.100(b), this section serves as notice to California residents of (A) the categories of personal information that we collect through the Site and Services, (B) the categories of sources of such personal information, (C) the business or commercial purposes for which such personal information was collected, and (D) the categories of third parties to whom such information was or could be disclosed in the past twelve (12) months. This notice supplements and is subject to our Privacy Policy. Please review all of this Section 11.5 Notice of Privacy Rights to California Residents for particular rights that California residents have under the California Consumer Privacy Act.
A. Types of Personal Information Collected
| Category | What We Collect |
|---|---|
| Identifiers |
|
| Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)) |
|
| Protected classification characteristics under California or federal law |
|
| Inferences drawn from other personal information |
|
| Biometric information |
|
| Geolocation data |
|
| Professional or employment-related information |
|
| Non-public education information (per the Family Educational Rights and Privacy Act (20 U.S.C. Section 1232g, 34 C.F.R. Part 99)) |
|
| Internet or other similar network activity |
|
| Sensory data | We do not collect information in this category |
| Commercial information | We do not collect information in this category |
B. Categories of Sources
For each of the above categories, we collect the following categories of information directly from you. For example, you may give us your personal information by filling in online forms, providing information to us through our website, ID.me, or by corresponding with us by mail, phone, email or over electronic chat. You are our only source for your personal information, and we only receive information that you give us directly.
C. Business or Commercial Purposes and/or Uses
Identity and/or group verification is the sole purpose of collecting the personal information you provide to us. The personal information you provide us may be used, individually or collectively, as proof for your identity verification.
D. With Whom We May Share Your Information
For each of the above categories, we may disclose your personal information to third parties as described in this Notice and our Privacy Policy, including:
This Website is hosted in the United States. If you are a User accessing the Website from the European Union, Australia, Asia, or any other region with laws or regulations governing personal data collection, use, and disclosure, that differ from United States’ laws, you are transferring your personal data to the United States which does not have the same data protection laws as such other regions. By providing your information to the Website, you are consenting to the transfer of your information to the United States for processing and maintenance in accordance with this Privacy Policy and our Terms of Service. You are also consenting to the application of Delaware law and controlling U.S. Federal law in all matters concerning the Website and ID.me Service.
Whether you’re a new or loyal customer, restaurant owner, marketer, publisher, media member or job seeker we’d like to stay connected and want to hear from you!
Corporate Address.
ID.me, Inc. 8280 Greensboro Drive, Suite 800 McLean, VA 22102
For Users and Customers.
Member Service Inquiries may be directed to help@id.me.
For Legal Notices.
Legal notices may be directed to legal@id.me.
Copyright © 2021 ID.me, Inc. All rights reserved.
This site uses cookies to store information on your computer, which provides functionality to our site and assists in providing our service. For more information see our Cookie Policy here. Please click "I Accept" to agree to our use of cookies.