Privacy Policy for Peabody Secure Services

At Peabody Secure, we are committed to protecting the privacy and security of the sensitive information processed through our Know Your Customer (KYC) and Anti-Money Laundering (AML) solutions ("Services"). This Privacy Policy explains how Peabody Secure ("we," "us," or "our") collects, uses, discloses, and safeguards information when you use our Services. By using our Services, you agree to the collection and use of information in accordance with this policy.

1. Information We Collect

We collect information primarily to provide and improve our KYC/AML Services. This includes:

  • Personal Identifiable Information (PII): This may include, but is not limited to, names, addresses, dates of birth, government-issued identification numbers (e.g., driver's license, passport), biometric data (e.g., facial scans for liveness detection and face matching), and other identifying details provided by your customers for verification purposes.
  • Financial Information: Data related to transactions or financial activities relevant to AML screening.
  • Usage Data: Information on how the Services are accessed and used, such as IP addresses, browser types, operating systems, and service configuration. This data is collected to maintain the quality of the Services and to provide general statistics regarding use.
  • Client Account Information: Information related to your Peabody Secure account, including contact details, billing information, and service preferences.

2. How We Use Collected Information

Peabody Secure uses the collected data for various purposes, primarily to:

  • Provide, operate, and maintain our Services, including identity verification, sanctions screening, and risk assessment.
  • Improve, personalize, and expand our Services.
  • Understand and analyze how you use our Services.
  • Detect, prevent, and address technical issues or fraudulent activities.
  • Comply with legal obligations and regulatory requirements, including those under the USA PATRIOT Act and FinCEN regulations.
  • Communicate with you, either directly or through one of our partners, including for customer service, to provide you with updates and other information relating to the Service, and for marketing and promotional purposes.

3. How We Protect Your Information

The security of your data is paramount to us. We implement robust technical and organizational measures designed to protect your information against unauthorized access, alteration, disclosure, or destruction. These measures include:

  • Encryption: Data is encrypted both at rest and in transit using industry-standard protocols (e.g., TLS, AES-256).
  • Access Controls: Strict Identity and Access Management (IAM) policies are enforced to ensure that only authorized personnel have access to sensitive data, on a need-to-know basis.
  • Regular Audits and Monitoring: Our systems are regularly audited and monitored for vulnerabilities and potential security breaches.
  • Secure Infrastructure: Our Services are hosted on secure, compliant infrastructure with advanced physical and environmental security controls.

4. Sharing Your Personal Information

We do not sell or rent your personal data to third parties. We may share information in the following circumstances:

  • With Your Consent: We may share your information when you provide us with explicit consent to do so.
  • For Legal and Regulatory Compliance: We may disclose information to comply with legal obligations, such as responding to subpoenas, court orders, or other legal processes, or to cooperate with regulatory authorities (e.g., FinCEN) as required by law, including the USA PATRIOT Act.
  • With Service Providers: We may engage third-party companies and individuals to facilitate our Services (e.g., hosting, data analysis, customer support). These third parties have access to your information only to perform these tasks on our behalf and are obligated not to disclose or use it for any other purpose.
  • Business Transfers: In connection with, or during negotiations of, any merger, sale of company assets, financing, or acquisition of all or a portion of our business to another company.

5. Data Retention

We retain personal information for as long as necessary to provide the Services, comply with our legal and regulatory obligations (e.g., AML record-keeping requirements), resolve disputes, and enforce our agreements. The specific retention periods depend on the type of data and the purpose for which it was collected.

6. Your Data Protection Rights

Depending on your jurisdiction, you may have the following data protection rights:

  • The right to access, update, or delete the information we have on you.
  • The right to rectify any incomplete or inaccurate information.
  • The right to object to our processing of your personal data.
  • The right to request that we restrict the processing of your personal data.
  • The right to data portability.
  • The right to withdraw consent at any time where Peabody Secure relied on your consent to process your personal information.

To exercise any of these rights, please contact us using the details provided below.

7. Changes to This Privacy Policy

We may update our Privacy Policy from time to time. We will notify you of any changes by posting the new Privacy Policy on this page and updating the "Last updated" date. You are advised to review this Privacy Policy periodically for any changes.

8. Contact Us

If you have any questions about this Privacy Policy, please contact us at support@peabodysecure.com.

Last updated: November 8, 2025