🔏Personal Information and Privacy
What KYC provider does The Sandbox use?
The KYC process is managed by an independent, third-party WEB3 security firm called Synaps.
Is my data stored on The Sandbox platform after I complete the KYC?
No. The document ID image and the information contained in the document is not stored on The Sandbox platform.
Synaps sends us a confirmation on whether the KYC process is approved. We record:
The status of the KYC process, which will be one of the following:
Not started
Pending
Approved
Rejected
The time and date of the result of the above status.
Your Synaps Session ID (which is a long, randomly-generated number unique to your account, so that The Sandbox and Synaps can help you in support tickets if needed).
We do not store any personal data from your identity documents at The Sandbox.
Is my data secure with Synaps?
Your data is encrypted in AES-256bits with a unique encryption key per file. The encryption keys are stored on hardware security modules provided by Google. All data is stored on Google Cloud in European data centres.
Synaps' KYC complies with strict standards in line with the stringent regulations of the European Union and beyond. The data is kept for a minimum of 5 years according to the KYC/AML directive.
Why are the microphone and camera accessed during the identification process?
During the KYC process, Synaps needs access to the camera so you can go through the different steps of the workflow (deliverability and submission of the ID document). This also includes access to the camera light that is activated to make holograms on identity documents more visible.
The monitoring and recording of these security features is done to prevent fraud and is particularly necessary due to the regulatory requirements for conducting a KYC.
Prior to the KYC process, each user is informed that the application requires access to the camera and that the user must give explicit permission for this.
Synaps only collects camera data during the identification process, as well as some general, non-personal data about the device for diagnostic purposes in case of an incident. At no time does Synaps have access to the data or images stored in the smartphone, tablet or computer.
Can I hide data on my ID document to pass the account verification process?
Certain security features (e.g. holograms) and the information on the identity document must be checked to prevent fraud. This is necessary due to regulatory requirements according to the KYC/AML directive.
It is mandatory that the information and fields required in the identity document are clearly visible. We therefore always advise against blacking out information, covering it up or using adhesive tape, as otherwise, the verification may not be successful, and/or your document could be flagged as a forgery.
Can I request The Sandbox to delete all the personal information Synaps gathered during the account verification process?
Yes, you can request all personal information deletion.
To do so please reach us here: [email protected]
And title it “Request KYC personal information deletion” in the email subject.
If your account was verified, it will still remain verified even after the information deletion.
Last updated