If you are under 18 years old, it is highly recommended to seek help from a parent, guardian or responsible adult to set up your RatifyID Digital Id.
Makesure Consulting Pty Ltd (ABN 35 168 163 666) (“Makesure” “we,” “us”) is bound by the Privacy Act 1988 (Cth) and the Privacy Act 2020 (NZ) (“Privacy Laws”) and takes its privacy obligations very seriously. We comply with the Australian Privacy Principles, the Australian Notifiable Data Breaches scheme and the Information Privacy Principles (NZ). This policy sets out how we manage your personal information and applies to all individuals who have dealings with us, either through our websites, our software or otherwise.
At Makesure, we respect your privacy and are committed to protecting your personal information. This Privacy Policy sets out how we collect, hold, use, store, and disclose your personal and sensitive information. We may change our Privacy Policy from time to time by publishing changes to it on our website. We encourage you to check our website periodically to ensure that you are aware of our current Privacy Policy.
We may collect and hold the following types of personal information and sensitive information:
We may collect these types of personal or sensitive information either directly from you or from third parties. We may collect this information when you:
When you use our verification services, we automatically receive and record certain information from your computer (or other device) and/or your web browser.
The purposes for which we will use personal and sensitive information will depend on the relationship with you and the products or services you require from us. We may collect, hold, use and disclose your personal and sensitive information for the following purposes:
In the context of biometric data collection and disclosure, RatifyID follows TDIF (Trusted Digital Id Framework) guidelines to protect individual privacy and security.
If we use your personal information for direct marketing of our services, we will ensure we comply with our obligations under relevant laws including having your consent to do so.
We do not use personal information collected as part of our identity verification services for marketing purposes and we do not sell any of your data to any third party. We do not use or disclose Personal information for direct marketing purposes including:
This requirement does not apply to the disclosure of Personal Information if:
We may disclose personal information (but not sensitive or biometric data) for the purposes described in this Privacy Policy to:
We may disclose your information to overseas recipients for specific purposes.
The developers who service our websites and may have access to personal information are based in Romania. Otherwise, we will not disclose user personal information to overseas recipients. Obligations under the contract between the parties identify the responsibility in regarding to protecting personal information in their possession against misuse or loss, in agreeing to the obligations under the privacy act 1988 (Cth) section 16C of the Privacy Act (Cth), Australian Privacy Principle 8.1 and chapter 1 of the App Guidelines.
In addition, Personal Information will not be transferred or stored overseas. All Ratify ID will be stored in Australia including any backups. The personal information will not leave the Ratify ID server and the access to the server is strictly under RatifyID control which can choose at any time to restrict access.
Your information will be stored on a secure database which has restricted access to only those personnel that need to have access to this information. Access to our computer environment is through a secure login environment and all efforts have been made to ensure that it cannot be accessed by unauthorized personnel.
At any time at your request, we will destroy your personal information. We will do this for any lawful request, provided it is in writing. In our RatifyID application, you can delete your own personal information. Otherwise, we will delete personal information as required by the relevant Privacy Laws.
The development team is certified to ISO27000 in relation to information security standards, and we have taken reasonable steps to ensure that Next Logic does not breach the Privacy Laws.
There may be circumstances where an individual provides us with personal or sensitive information about another person. Where we receive unsolicited personal information which we do not require for the purposes we have outlined above, we will destroy or de-identify that information as soon as practicable (if it is lawful and reasonable to do so).
You may ask to access the personal information we hold about you and we will respond to your request as soon as reasonably practicable and in any event within 20 working days.
We will give you access to your personal information unless we are entitled to refuse under the relevant Privacy Laws, in which case we will provide you with a written notice setting out, among other things, the reasons for the refusal.
You may ask us to amend the information if it is not accurate, complete, or up to date and we will respond to your request within the time frames stated above. If we refuse to amend the information:
If you wish to exercise your rights of access and correction, please contact us using the details provided below. In some cases, we may impose a moderate and reasonable charge for providing access to personal information. We will not charge you simply because you lodge a request for access.
To lodge a request to access or correct your personal information, please provide:
By providing your consent through RatifyID, you allow the collection, use, and disclosure of your Attributes and Biometric Information for Identity Proofing and Digital Id authentication purposes. You have the option to give express consent on a one-time basis or provide enduring express consent. Enduring express consent can be withdrawn or modified at any time by adjusting settings in your RatifyID profile or contacting info@ratifyid.com.
If you choose not to provide enduring express consent, you will be asked for express consent each time your Attributes or Biometric Information needs to be disclosed. If you decline to provide either form of consent, RatifyID won't be able to perform Identity Proofing or authenticate your Digital Id.
It's important to note that alternative methods of identity verification exist outside of RatifyID, such as manually providing identity documents to a third party.
If you believe that we have breached privacy laws or wish to make a complaint about the way we have handled your personal information in our Identity System, please contact us using the details below or alternatively complete this compliant form. We will investigate your complaint and respond to you promptly. If you are not satisfied with our response, you may lodge a complaint with the Office of the Australian Information Commissioner.
If you have any questions or concerns about this Privacy Policy or our privacy practices in relation to our Identity System, please contact us at:
Privacy Officer
Email: privacy@ratifyid.com
Address: 5/26-36 High Street Northcote Vic 3070
Effective Date: 23 May 2023
This privacy policy will be reviewed annually and updated as required by the Privacy Officer of Ratify ID.
We reserve the right to change this Privacy Policy at any time by posting revisions on our web page. Such changes will be effective upon posting and the current version published on our website shall apply.
Please revisit this page to stay aware of any changes. If the Privacy Policy is part of an agreement with you, we will notify you by e-mail or other appropriate means in case of an amendment. In some cases, we may require you to acknowledge again our Privacy Policy before using our app.
We publish the titles of Privacy Impact Assessments
Reference number | Date Finalised | Title |
PIA001 | 15/06/2023 | Privacy Impact Assessment |
PIA002 | 30/08/2023 | Second Privacy Impact Assessment |
RatifyID’s Privacy Impact Assessment (PIA) Register is published as PIAs are an important component in the protection of privacy and should be part of a company’s risk management and planning processes.
Privacy policy version 1.2 Updated : 01 September 2023
Our Company
RatifyID is wholly owned by background checking company Makesure and built in partnership with the Ratify team. Based in Melbourne Australia the RatifyID team is best contacted via the Contact Us page.