Privacy Policy

1. Introduction

RegisteredBrands.AI ("we," "our," or "us") operates the brand verification and trust infrastructure platform at registeredbrands.ai. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our platform, including our website, APIs, and related services (collectively, the "Service").

2. Information We Collect

We collect information in the following categories:

Account Information

When you create an account, we collect your name, email address, and authentication credentials. For business accounts, we may also collect your company name, role, and business contact information.

Brand Capsule Data

When you create a Brand Capsule, we collect your brand name, domain, description, DUNS number, identity codes, trust profile URIs, and any documents you upload for verification. This information is used to generate your Brand Capsule and calculate your trust score.

API Usage Data

We log API requests including endpoints accessed, request timestamps, user agent strings, IP addresses, and response codes. This data is used for rate limiting, security monitoring, and service improvement.

Machine-to-Machine Data

When AI agents or bots interact with our verification endpoints, we collect protocol-specific identifiers, verification request metadata, and transaction context. This data is processed to facilitate trust verification in bot-to-bot commerce.

3. How We Use Your Information

We use collected information to: operate and maintain the Service; generate, verify, and publish Brand Capsules; calculate and update trust scores; process Distributor Badge Key issuance and verification; respond to verification queries from AI agents and bots via our API endpoints; enforce community flagging and trust penalties; communicate with you about your account and service updates; comply with legal obligations; and improve our platform and develop new features.

4. Public Brand Capsule Data

By creating a Brand Capsule, you acknowledge that certain information — including your brand name, domain, capsule type, trust score, and verification status — will be made publicly available through our Explorer dashboard and machine-readable API endpoints (including /.well-known/brand-capsule.json). This public availability is fundamental to the trust verification service and enables AI agents to verify your brand in commerce transactions.

5. Data Sharing and Disclosure

We do not sell your personal information. We may share data with: service providers who assist in operating our platform; law enforcement when required by law; parties involved in a merger, acquisition, or asset sale; and AI agents and bots that query our public verification endpoints. Distributor Badge Key data is shared only with parties you explicitly authorize through the badge key issuance process.

6. Data Security

We implement industry-standard security measures including encryption in transit (TLS), secure credential storage, and access controls. Verification documents are stored in encrypted cloud storage. API authentication uses cryptographic tokens, and our RFC 9421-compatible endpoints support HTTP message signatures for integrity verification.

7. Data Retention

Brand Capsule data is retained for the duration of your account plus 90 days after deletion. API access logs are retained for 12 months. Verification documents are retained for the duration of your active capsule. You may request deletion of your data at any time by contacting us.

8. Your Rights

Depending on your jurisdiction, you may have rights to: access the personal data we hold about you; correct inaccurate data; request deletion of your data; restrict or object to processing; data portability; and withdraw consent. To exercise these rights, contact us at [email protected].

9. International Transfers

Our services are operated globally. By using the Service, you consent to the transfer of your information to countries outside your country of residence, which may have different data protection rules. We ensure appropriate safeguards are in place for such transfers.

10. Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on our website and updating the "Last updated" date. Your continued use of the Service after changes constitutes acceptance of the updated policy.

11. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact us at [email protected] or through our Contact page.