Privacy Policy
Privacy-first human verification.
Human Gateway is designed to help applications verify real humans and create private verified-human sessions without requiring personal identity data such as name, email, phone number, government ID, or physical address from end users completing Human Gateway Verify/Auth flows.
Last updated: July 2026.
1. What Human Gateway does
Human Gateway provides verification and authentication infrastructure for partner applications. It uses World ID as an integrated proof-of-human technology and turns that proof into product infrastructure such as hosted Verify flows, hosted Auth flows, partner-scoped user references, verified sessions, signed callbacks, audit events, and operational access controls.
2. Early access and beta-stage service
Human Gateway is currently operating as an early partner and beta-stage service. Product behavior, limits, SDKs, APIs, dashboard features, documentation, pricing, and partner onboarding processes may change as the platform matures.
3. Personal identity data
Human Gateway does not require end users to provide name, email, phone number, government ID, physical address, identity documents, or biometric data to Human Gateway in order to complete hosted human verification or hosted human auth flows.
Partners may collect additional information in their own products depending on their own user experience, legal basis, policies, jurisdiction, and implementation. Partner data collection is the responsibility of the partner.
4. Technical and operational data
To operate the service, Human Gateway may process limited technical and operational data such as partner identifiers, project identifiers, action identifiers, verification status, partner-scoped user references, auth session identifiers, callback event identifiers, timestamps, allowed origins, callback delivery records, rate-limit records, security events, audit events, request metadata, infrastructure logs, and related product diagnostics.
This data is used to operate the product, secure partner access, deliver callbacks, troubleshoot integrations, prevent abuse, enforce service limits, maintain auditability, and improve the platform.
5. Request access data
If you submit a request for partner access, Human Gateway may process the information you provide, such as project or company name, website or app URL, contact details, and use case description. This information is used to review early partner access, understand integration needs, prevent abuse, and communicate with applicants.
6. Partner-scoped verification
Human Gateway is built around partner-scoped verification. The goal is to let each partner know whether a user has verified as a real human for that partner context, without exposing unnecessary personal identity data or raw World ID signals.
Human Gateway does not expose raw World ID nullifiers, raw World ID proofs, identity documents, government identity data, or biometric data to partners through standard Verify/Auth responses or callbacks.
7. Cookies, analytics, and similar technologies
Human Gateway may use cookies, local storage, session storage, analytics, and similar technologies to operate the service, protect accounts, maintain sessions, understand basic product usage, troubleshoot issues, and improve partner onboarding.
More information is available in the Cookies Policy.
8. Security and abuse prevention
Human Gateway may use technical records to protect the platform, reduce abuse, detect suspicious behavior, troubleshoot integrations, verify callback delivery, enforce rate limits, maintain session safety, and support operational audit logs.
9. Service providers
Human Gateway may use infrastructure and service providers for hosting, analytics, email delivery, databases, security, monitoring, logging, and related operational needs. These providers may process limited technical or operational data only as needed to provide their services to Human Gateway.
10. Data retention
Human Gateway retains technical and operational records only for as long as reasonably necessary to provide the service, maintain security, support auditability, troubleshoot integrations, enforce limits, comply with legal obligations, resolve disputes, and improve the platform.
11. Relationship with partners
Partners are responsible for their own application security, user experience, legal compliance, data policies, consent flows, privacy notices, access-control decisions, callback endpoints, secrets, and use of Human Gateway results within their own products.
12. Relationship with World ID
Human Gateway is an independent product. It uses World ID as an integrated proof-of-human technology, but it is not affiliated with, endorsed by, or sponsored by World Foundation, Tools for Humanity, or World. World ID and related marks are trademarks of their respective owners.
13. No KYC or civil identity service
Human Gateway is not a KYC provider, civil identity provider, government identity verification system, sanctions screening service, or replacement for legal compliance checks that may be required by regulated products or jurisdictions.
14. Contact
For privacy questions, contact support@humangateway.dev.