Legal Notices
Transparency and security in handling your information
Transparency and security in handling your information
OrigoID acts as the Data Processor for personal data processing, in accordance with the Mexican Federal Law on Protection of Personal Data Held by Private Parties (LFPDPPP) and equivalent international regulations. Our B2B clients (who consume our API) act as the Data Controllers responsible for obtaining consent from end-users.
We solely process data sent by our clients through our API, which may include: Names, Surnames, CURP, RFC, NSS, OCR/CIC from INE/IFE credentials, email addresses, and facial biometrics (selfies) strictly for comparison purposes (Face Match).
OrigoID DOES NOT store, save, or archive personal or biometric data. Our infrastructure operates under a passthrough model (in-memory transfer channel). Data is processed in milliseconds to query public access sources and is immediately destroyed after returning the JSON response to the client.
The platform functions as a technological intermediary that consolidates information from government portals and public access sources in real-time.
Since we do not store databases, any ARCO rights requests (Access, Rectification, Cancellation, Opposition) must be directed to the "Data Controller" (our client). For questions regarding our security policies, contact: hello@origoid.com.
OrigoID provides a technological intermediation REST API. The service is provided "As-Is". The client acknowledges that OrigoID consolidates information from third-party sources and public portals.
The client understands that OrigoID depends on the availability of government and third-party systems (e.g., RENAPO, SAT, INE). OrigoID shall not be liable for downtime, latency, or interruptions arising from failures in such source origins. Our SLA strictly covers the availability of our Gateway and internal services.
The client is solely responsible for obtaining the express consent of data subjects prior to sending their data to our API. OrigoID is not liable for business decisions (credit approvals, hiring, rejections) that the client makes based on the API responses.
The source code, algorithms, and architecture of the API are the exclusive property of OrigoID. Reverse engineering is strictly prohibited.
These terms are governed by the applicable laws of the United Mexican States.