Privacy Policy

Last Updated: AUGUST 30, 2022.
This Privacy Policy describes the privacy practices of Sora ID, Inc. (“Sora”, “we”, “us” or “our”) and how we handle personal information that we collect through websites or mobile apps that link to this Privacy Policy (collectively, the “Service”). This Privacy Policy also describes your choices with respect to your personal information.

Personal information we collect

Information you provide to us. Personal information you may provide to us through the Service or otherwise includes:

  • Account data that you provide to create an account on the Service, including your name, email address and any password or other authentication credential such as a WebAuthn authenticator identifiers.
  • Identification data, such as scans of your driver’s license or other government-issued identification and the information it contains (e.g. Social Security Number, tax identification number, passport number, driver’s license number)
  • Communications that we exchange with you, including when you contact us with questions or feedback, through social media, or otherwise.
  • Other data not specifically listed here, which we will use as described in this Privacy Policy or as otherwise disclosed at the time of collection.

Third party sources. We may combine personal information we receive from you with personal information we obtain from other sources, such as:

  • Public sources, such as government agencies, public records, and other publicly available sources.
  • Identity verification services, such as Credit Bureaus and Data Aggregators.

Automatic data collection. We, our service providers, and our business partners may automatically log information about you, your computer or mobile device, and your interaction over time with the Service, our communications and other online services, such as:

  • Device data, such as your computer’s or mobile device’s operating system type and version, manufacturer and model, browser type, screen resolution, RAM and disk size, CPU usage, device type (e.g., phone, tablet), IP address, unique identifiers (including identifiers used for advertising purposes), language settings, mobile device carrier, radio/network information (e.g., WiFi, LTE, 3G), and general location information such as city, state or geographic area.

  • Online activity data, such as launches, taps, clicks, scrolling information, pages or screens you viewed, how long you spent on a page or screen, the website you visited before browsing to the Service, navigation paths between pages or screens, information about your activity on a page or screen, access times, and duration of access, whether you have opened our marketing emails or clicked links within them, and diagnostic data (such as crash logs, launch time, hang rate and energy use).

  • Precise geolocation data when you authorize our mobile application to access your device’s location.

Cookies. Cookies are small data files that are placed on your computer or mobile device when you visit a website. Cookies serve different purposes, like helping us understand how a site is being used, letting you navigate between pages efficiently, remembering your preferences and generally improving your browsing experience. Our sites may use both session cookies (which expire once you close your web browser) and persistent cookies (which stay on your computer or mobile device until you delete them). Some of these cookies are served by third party service providers or business partners, and can be used by these parties to recognize your computer or mobile device when it visits the Service and other online services. These third parties and Sora may use cookies and other tracking for the following purposes:

Other technologies

  • Analytics. Help us understand how our services are performing and being used. These cookies may work with web beacons included in emails we send to track which emails are opened and which links are clicked by recipients.
  • Essential cookies. Necessary to allow the technical operation of our services (e.g., they enable you to move around on a website and to use its features).

How we use your personal information

We use your personal information for the following purposes or as otherwise described at the time of collection:

Service delivery. We use your personal information to:

  • provide, operate and improve the Service and our business;

  • enable the functionality of the Service, including to authenticate the user, enable features, prevent fraud, implement security measures, ensure server up-time, minimize crashes, and improve scalability and performance;

  • communicate with you about the Service, including by sending announcements, updates, security alerts, and support and administrative messages;

  • understand your needs and interests, and personalize your experience with the Service and our communications; and provide support for the Service, and respond to your requests, questions and feedback.

Research and development.

We may use your personal information for research and development purposes, including to analyze user behavior, understand the effectiveness of existing features, plan new features, measure audience size or characteristics and otherwise analyze and improve the Service and our business. As part of these activities, we may create aggregated, de-identified or other anonymous data from personal information we collect. We make personal information into anonymous data by removing information that makes the data personally identifiable to you. We may use this anonymous data and share it with third parties for our lawful business purposes, including to analyze and improve the Service and promote our business.

Compliance and protection.

We may use your personal information to:

  • comply with applicable laws, lawful requests, and legal process, such as to respond to subpoenas or requests from government authorities;

  • protect our, your or others’ rights, privacy, safety or property (including by making and defending legal claims);

  • audit our internal processes for compliance with legal and contractual requirements and internal policies;

  • enforce the terms and conditions that govern the Service; and prevent, identify, investigate and deter fraudulent, harmful, unauthorized, unethical or illegal activity, including cyberattacks and identity theft.

How we share your personal information

We may share your personal information with the parties below, with other third parties with your consent, and as otherwise described in this Privacy Policy or at the time of collection.

  • Affiliates. Our corporate parent, subsidiaries, and affiliates, for purposes consistent with this Privacy Policy.
  • Service providers. Companies and individuals that provide services on our behalf or help us operate the Service or our business (such as hosting, information technology, customer support, email delivery, marketing, and website analytics) to facilitate the provision of such services.
  • Identity verification services. Information you provide to the Service is shared with identity verification services described above.
  • Professional advisors. Professional advisors, such as lawyers, auditors, bankers and insurers, where necessary in the course of the professional services that they render to us.
  • Authorities and others. Law enforcement, government authorities, and private parties, as we believe in good faith to be necessary or appropriate for the compliance and protection purposes described above.
  • Business transferees. Acquirers and other relevant participants in business transactions (or negotiations for such transactions) involving a corporate divestiture, merger, consolidation, acquisition, reorganization, sale or other disposition of all or any portion of the business or assets of, or equity interests in, Sora or our affiliates (including, in connection with a bankruptcy or similar proceedings).

Your choices

You have the following choices with respect to your personal information.

  • Access, update or delete your information. If you have registered for a Service account with us, you may review, update or delete certain account information by logging into the account.
  • Opt-out of marketing communications. You may opt-out of marketing-related emails by following the opt-out or unsubscribe instructions at the bottom of the email, or by contacting us. You may continue to receive service-related and other non-marketing emails.
  • Blocking cookies in your browser. Most browsers let you remove or reject cookies. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. Please note that if you set your browser to disable cookies, our websites may not work properly. For more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, visit www.allaboutcookies.org. If you do not accept our cookies, you may experience some inconvenience in your use of our websites. For example, we may not be able to recognize your computer or mobile device and you may need to log in every time you visit our websites
  • Mobile device permissions. You can use your mobile device’s privacy settings to revoke our access to any data granted through them.
  • Do Not Track. Some Internet browsers may be configured to send “Do Not Track” signals to the online services that you visit. We currently do not respond to “Do Not Track” or similar signals. To find out more about “Do Not Track,” please visit http://www.allaboutdnt.com.
  • Declining to provide information. We need to collect personal information to provide certain services. If you do not provide the information we identify as required or mandatory, we may not be able to provide those services.

Your choices

You have the following choices with respect to your personal information.

  • Access, update or delete your information. If you have registered for a Service account with us, you may review, update or delete certain account information by logging into the account.
  • Opt-out of marketing communications. You may opt-out of marketing-related emails by following the opt-out or unsubscribe instructions at the bottom of the email, or by contacting us. You may continue to receive service-related and other non-marketing emails.

  • Blocking cookies in your browser. Most browsers let you remove or reject cookies. To do this, follow the instructions in your browser settings. Many browsers accept cookies by default until you change your settings. Please note that if you set your browser to disable cookies, our websites may not work properly. For more information about cookies, including how to see what cookies have been set on your device and how to manage and delete them, visit www.allaboutcookies.org. If you do not accept our cookies, you may experience some inconvenience in your use of our websites. For example, we may not be able to recognize your computer or mobile device and you may need to log in every time you visit our websites.

  • Limit interest-based advertising. Your options for limiting use of your information for interest-based advertising purposes, include:

Other sites and services

The Service may contain links to websites, mobile applications, and other online services operated by third parties. In addition, our content may be integrated into web pages or other online services that are not associated with us. These links and integrations are not an endorsement of, or representation that we are affiliated with, any third party. We do not control websites, mobile applications or online services operated by third parties, and we are not responsible for their actions.

Security

We employ a number of technical, organizational and physical safeguards designed to protect the personal information we collect. However, security risk is inherent in all internet and information technologies and we cannot guarantee the security of your personal information. If you discover a security vulnerability please notify us at support@soraid.com or if you would like to report it anonymously, visit this Google Form.

International data transfer

We are headquartered in the United States and may use service providers that operate in other countries. Your personal information may be transferred to the United States or other locations where privacy laws may not be as protective as those in your state, province, or country.

Children
The Service is not intended for use by anyone under 18 years of age. If we learn that we have collected personal information through the Service from a child under 18 without the consent of the child’s parent or guardian as required by law, we will delete it.

Your California privacy rights

Under California’s Shine the Light law (California Civil Code Section 1798.83), you may ask companies with whom you have formed a business relationship primarily for personal, family or household purposes to provide the names of third parties to which they have disclosed certain personal information (as defined under the Shine the Light law) during the preceding calendar year for their own direct marketing purposes and the categories of personal information disclosed. You may send us requests for this information to privacy@soraid.com In your request, you must include the statement “Shine the Light Request,” and provide your first and last name and mailing address and certify that you are a California resident. We reserve the right to require additional information to confirm your identity and California residency. We will not accept requests via telephone, mail, or fax, and we are not responsible for notices that are not labeled or sent properly, or that do not have complete information.

Changes to this Privacy Policy

We reserve the right to modify this Privacy Policy at any time. If we make material changes to this Privacy Policy, we will notify you by updating the date of this Privacy Policy and posting it on the Service. If required by law we will also provide notification of changes in another way that we believe is reasonably likely to reach you, such as via email or another manner through the Service. Any modifications to this Privacy Policy will be effective upon our posting the modified version (or as otherwise indicated at the time of posting). In all cases, your use of the Service after the effective date of any modified Privacy Policy indicates your acceptance of the modified Privacy Policy.

How to contact us