Privacy Policy

Effective Date: December 1, 2025

This Privacy Policy is incorporated by reference into the Terms of Service.

AuthLN, Inc. ("AuthLN," "we," "us," or "our") provides identity authentication, access control, and security telemetry services.

1. Scope

This Privacy Policy applies to information processed through AuthLN's websites, applications, APIs, and related services (collectively, the "Services"). AuthLN acts as a data processor on behalf of its customers and as a data controller only with respect to its own business operations.

2. Information Processed

Organization-assigned user identifiers
Device identifiers and device-bound passkeys
Authentication attempts and security telemetry

3. Blockchain & Payment-Factor

AuthLN does not custody digital assets, does not store private keys, and is not a money transmitter.

4. Retention

Default retention is no more than 45 days.

5. Security Alignment

Aligned with NIST SP 800-53 Rev. 5 (AU, IA, AC, SI) and ISO/IEC 27001:2022 Annex A.