This privacy information will refer to Age Verifier as 'us' and the organisation you’re interacting with to prove your age as the ‘Organisation’ or ‘Client’. When you use AVS, Ageverifier is the service provider / processor on behalf of our Clients (the organisation that requested you complete an age check in order to access their products/services). This means that our Clients are responsible for the processing of your personal information and you should contact the Client for any questions on the use of your data.
Ageverifier AVS has been designed to give you a quick, privacy-friendly way to prove your age online. The process works as follows:
No directly identifiable information is shared back with the Ageverifier Client – they only receive the result of the age check.
AVS has various different methods that can be used to verify age:
The Ageverifier Client decides which of the above age-checking methods it wants to use and whether they want to receive your age in years or if you are ‘over’ or ‘under’ their specific age requirement.
Depending on the age-checking method, the Ageverifier Client may also choose to enhance the security of the check and use your information to:
This check uses your selfie to analyse and estimate your age. You’ll be asked to take a selfie using the camera on your device. This captures a single facial image which will be analysed by our age estimation technology to determine whether you are over or under the required age.
If requested by the Ageverifier Client, we analyse the image with liveness detection technology to ensure it is of a real person and not a 2D image, mask, or bot.
Ageverifier deletes the image as soon as an age estimate is given — no images are shared with the Client.
This check uses your ID document to determine your age. You’ll be asked to scan your ID document using the camera on your device. We extract the information from your ID document and calculate if you are over the Client’s age requirement using your date of birth.
If the Ageverifier Client wants extra security, they may request a selfie. This is used for face matching to confirm the ID document belongs to you.
This check uses your credit card details to verify your age. You’ll be asked to enter your credit card details and postcode, we will send these details to a payment provider and place a temporary £0.30 hold on your card. This is to verify that your card is current and valid. We use this to determine that you are over 18 and remove the £0.30 hold on your card once the age check is complete.
You will not be charged to verify your age. We never store or share your credit card details with anyone other than the provider.
This check uses your mobile number to verify your age. You’ll be asked to enter your name, date of birth, mobile number and address. Alternatively the Ageverifier client may provide us with your details. We send these details to one of our mobile checking providers. You will receive an SMS with a verification code that you will need to enter. This is to confirm you are in possession of the phone. The third party provider then confirms that the details entered match the details of the mobile phone provider account.
We never store or share your details with anyone other than the third party provider. Ageverifier deletes your data immediately following the check. The third party provider may retain a record of your check for up to 2 years.
This check uses a credit reference agency provider to verify your age. You’ll be asked to enter your name, address, DOB and social security number (depending on what the Ageverifier client chooses) which will be shared with a third-party provider.
We never store or share your details with anyone other than the third party provider.
You’ll be asked to prove your age using one of the following US mobile driving licences:
Once you have chosen the mDL scheme that you want to use, you will need to log in and share your details. We will receive confirmation that you meet the age threshold defined by the Ageverifier Client.
This check uses your email address to estimate your age. You’ll be asked to submit your email address, which we will share with the third-party provider.
The third-party provider checks marketing and other databases for which advertising segments your email address is linked to and these are cumulatively used to estimate age. Such advertising segments may include ‘Home Own or Rent’, ‘Credit Card Holder Bank’, ‘Refinance Loan Type’, ‘Household Income’, ‘Number of Credit Lines’, etc.
To reduce the number of times you need to verify your age online, we have developed a system of age tokens. These are optional so not all Ageverifier Clients will use them. Below, we explain how they work and where you would interact with them.
Age Tokens act as digital proof of an age check and allow you to reuse the result of an age check for as long as the Organisation allows.
An age token is created when you prove your age with Ageverifier and contains the result of the check plus information on how and when it was performed. Age tokens do not contain any directly identifiable personal information, they do not track you and do not know where you have been or where you have come from. Age tokens are stored in your browser like a cookie and are time limited. You can delete an age token by clearing your cache.
If you go to a website that’s using age tokens, you will click a button to verify your age and the organisation will read the age token from your browser. If the token meets the requirements set by the website, Ageverifier will return a result to confirm your browser has previously been verified and you’ll be given access to the website for as long as the token is valid.
If you don’t have an Age Token that meets the requirements, you’ll be asked to prove your age via the standard process.
You can store your Age Tokens in an Age Account. This allows you to access the Ageverifier Client’s website on another browser or device, without having to prove your age again.
You will only be able to create an age account if the specific Ageverifier Client is using Age Tokens. Once you prove your age via the standard methods, you will be given the option to create an Age Account with an anonymous username and password. If you go to a website that’s using Age Accounts, you will see an option to log into your Age account using your username and password. The website will check to see if there are any Age Tokens in your browser that meet the criteria defined by the Client. If so, Ageverifier returns a result to the Ageverifier Client to confirm you have previously been verified and your Age Token meets those criteria.
If you don’t have any Age Tokens that meet the criteria, you will be asked to verify your age using one of the other available methods. When successful, a new Age Token will be created and stored in your Age Account. You can delete your Age Account at any time.
For most age-checking methods, the data is deleted as soon as the check is complete. In some cases, the Ageverifier Client will configure the Ageverifier service so that the maximum amount of time that Ageverifier has access to your personal data to perform the check is 28 days. This will depend on the Ageverifier Client and its specific requirements.
After 28 days (or sooner if chosen by the Client), Ageverifier may continue to store the results of the age checks on behalf of the Client, according to the retention period set by them as controller. Ageverifier does not have access to the data following the initial 28 days.
Where Ageverifier is under a legal or statutory obligation to retain your data, for example, due to a valid request from law enforcement, we will keep your data for longer.
Checks and results of checks processed on Ageverifier servers in Ageverifier Tier 2 data centre(s) within the UK or in a US, EU, UK AWS region.
Third-party providers may process data in different locations. Where this processing involves a cross-border transfer of data, Ageverifier ensures there are appropriate technical and organisational measures in place to protect the data, and that such transfers are made in accordance with legal requirements.
If you want to exercise your rights in relation to your check, you should contact the Ageverifier Client that requested you complete the check as they are responsible as the controller.
Ageverifier is the service provider and so you should contact the Organisation at requested you complete the age check to exercise your rights in relation to your data.
If you have any questions about Ageverifier or what is included in this privacy information, you can contact Ageverifier using the below:
Email: support@ageverifier.com
