Terms of Service

1. Acceptance of Terms

By accessing or using IntegrityLens AI ("Service"), you accept and agree to be bound by these Terms of Service (the "Terms"). If you are using the Service on behalf of an organization, you represent and warrant that you have authority to bind that organization to these Terms. If you do not agree to these Terms, do not use the Service.

2. Description of the Service

IntegrityLens AI provides candidate identity verification and technical screening services, including but not limited to:

• Document verification and authentication
• Biometric identity verification (facial recognition, voice analysis)
• AI-powered technical interviews and assessments
• Candidate screening, reporting, and lifecycle management tools

3. Eligibility & Authorized Use

The Service is intended for use by employers, recruiters, and authorized HR personnel for legitimate hiring purposes only. You must not use the Service for surveillance, non-consensual monitoring, or any unlawful activity. You are responsible for complying with all applicable employment, anti-discrimination, and data protection laws when using the Service.

4. User Responsibilities

As a user of the Service, you agree to:

• Provide accurate and truthful information;
• Obtain all required candidate consents prior to submitting personal or biometric data;
• Use the Service in compliance with applicable laws and these Terms;
• Not attempt to reverse-engineer or circumvent security measures;
• Use the Service only for legitimate, authorized hiring activities.

5. Data Protection & Privacy

IntegrityLens is committed to protecting personal data. Our Privacy Policy, incorporated by reference, explains how we collect, use, share, and protect personal information, including biometric data. In typical customer deployments, customers (employers) act as the data controller and IntegrityLens acts as a data processor. Where we act as controller, we will notify affected individuals.

You must ensure you have any required legal basis (including candidate consent where applicable) before submitting biometric or other sensitive personal data to the Service.

6. Security

We implement administrative, technical, and organizational measures to protect personal data, including AES-256 encryption at rest, TLS in transit, role-based access controls, multi-factor authentication for administrative access, monitoring, and incident response procedures. We maintain SOC 2 and ISO 27001-aligned controls and conduct regular security testing.

While we endeavor to protect data and maintain best practices, no system is 100% secure and we cannot guarantee absolute security of data. See the Privacy Policy and Data Processing Addendum (DPA) for details.

7. Biometric Data & Data Retention

Biometric data (e.g., facial images, 3D face maps, voice samples) are sensitive. IntegrityLens processes biometric data only to the extent necessary to provide verification and authentication services in accordance with customer instructions.

Default retention: Raw biometric captures and templates are processed in real-time and are not retained persistently unless the customer explicitly authorizes retention for a defined purpose and retention period. Other categories of data (audit logs, assessment results) are retained per contractual retention schedules or as required by law.

8. Payment & Subscription Terms

Use of the Service may be subject to subscriptions, usage fees, or credits. Fees are billed according to the plan selected and are non-refundable unless otherwise stated. We reserve the right to suspend or terminate access for non-payment. Specific pricing and billing terms are set forth in your ordering documents or account settings.

9. Account Suspension & Termination

We may suspend or terminate access if you violate these Terms, misuse the Service, engage in fraudulent activity, or fail to pay fees. We may also suspend access for maintenance, emergency security issues, or legal obligations. You may terminate your account following the process described in the Service or by contacting support@getintegritylens.com.

10. Candidate Rights & Data Subject Requests

Candidates may have rights under applicable privacy laws, including rights of access, correction, deletion, restriction, portability, objection, and withdrawal of consent. In most customer deployments the employer (controller) handles candidate requests. If you are a candidate and need assistance, contact the employer who collected your data or privacy@getintegritylens.com and we will coordinate with the controller as required by law.

11. Indemnification

You agree to indemnify, defend, and hold harmless IntegrityLens and its officers, directors, employees, and agents from and against any claims, liabilities, damages, losses, and expenses (including reasonable attorneys' fees) arising out of or in connection with (a) your misuse of the Service; (b) your breach of these Terms; (c) your violation of applicable laws; or (d) any data subject claims arising from your use of the Service without required consents or legal bases.

12. Limitation of Liability

TO THE MAXIMUM EXTENT PERMITTED BY APPLICABLE LAW, INTEGRITYLENS SHALL NOT BE LIABLE FOR ANY INDIRECT, INCIDENTAL, SPECIAL, CONSEQUENTIAL, OR PUNITIVE DAMAGES, INCLUDING LOST PROFITS OR LOST DATA. OUR AGGREGATE LIABILITY FOR ANY CLAIM SHALL NOT EXCEED THE FEES PAID TO US FOR THE SERVICE DURING THE SIX (6) MONTHS PRECEDING THE CLAIM.

13. Data Sharing, Subprocessors & International Transfers

We do not sell personal data. We may share data with: (a) customers (employers) per customer instructions; (b) authorized subprocessors (e.g., cloud hosting, analytics, fraud detection) subject to contractual safeguards; (c) legal or regulatory authorities when required by law; and (d) buyers in the event of a corporate transaction.

Cross-border transfers of personal data are protected by appropriate safeguards such as standard contractual clauses, adequacy findings, or other lawful transfer mechanisms. Customers can obtain a current subprocessor list by contacting legal@getintegritylens.com.

14. Cookies & Tracking

We use cookies and similar technologies for essential functionality, security, analytics, and performance. Browser controls can be used to manage cookie preferences. See our Cookie Notice for full details and opt-out options.

15. Children

The Service is not directed at children under the age of 16, and we do not knowingly collect personal information from minors. If we become aware that we have collected data from a minor, we will take steps to delete it.

16. Third-Party Services

The Service may integrate with third-party providers (e.g., video conferencing, code execution sandboxes, cloud providers). Those third parties have their own privacy policies and terms — we encourage review of those policies. IntegrityLens is not responsible for third-party practices.

17. Data Processing Addendum (DPA)

We offer a DPA for customers that governs data controller/processor roles, subprocessors, security measures, breach notification timelines, cross-border transfer mechanisms, and data subject rights assistance. To request the full DPA or to discuss custom terms, contact legal@getintegritylens.com.

18. Changes to These Terms

We may modify these Terms from time to time. For material changes we will provide notice by email or via the Service. Continued use of the Service after changes are posted constitutes acceptance of the updated Terms.

19. Governing Law & Dispute Resolution

These Terms are governed by the laws of , without regard to conflict of laws principles. Unless prohibited by applicable law, disputes will be resolved through binding arbitration administered by an agreed arbitration provider. To change the arbitration clause or jurisdiction, contact legal@getintegritylens.com.

20. Contact Information

For questions about these Terms or our practices, contact: