Crittora SMS Privacy Policy

1. Information We Collect

When you opt in to receive SMS messages, we may collect:

• your mobile phone number
• message delivery metadata (timestamps, delivery status)
• authentication event records

We do not collect message content beyond what is required to deliver OTPs.

2. How We Use SMS Information

We use SMS-related information solely to:

• deliver one-time passcodes
• verify identity
• secure access to QVerify services
• prevent fraud and unauthorized access

SMS information is never used for marketing or advertising.

3. Data Sharing

We do not sell, rent, or share SMS data for marketing purposes.

We may share limited information with:

• SMS delivery providers (e.g., mobile carriers, AWS messaging services)
• service providers acting on our behalf under strict confidentiality obligations

4. Data Retention

Phone numbers and SMS metadata are retained only as long as necessary to:

• provide authentication services
• comply with legal and regulatory requirements
• maintain security audit records

5. Security

QVerify employs strong security measures, including:

• encryption in transit and at rest
• access controls
• audit logging
• secure key management

OTP codes are time-limited and invalidated after use.

6. User Choices

You may:

• opt out of SMS messages at any time by replying STOP
• request alternative authentication methods
• contact us to update or remove your phone number

7. International Users

SMS messages may be transmitted through international carriers depending on your location. By opting in, you acknowledge that message routing may occur across borders.

8. Changes to This Policy

We may update this SMS Privacy Policy periodically. Updates will be posted on our website with a revised "Last Updated" date.