Registry Privacy Policy

Data handling for registry.attestlayer.com only.

This policy applies only to registry.attestlayer.com and the public registry endpoints served from that domain. It does not govern the buy, partners, verify, pay, console, or root corporate sites.

What the registry processes

The registry is a public, read-only transparency log. Its purpose is to publish cryptographic commitments, checkpoints, and public verification material so third parties can verify AttestLayer-issued evidence independently.

Registry entries are designed to avoid customer names, email addresses, and file contents.
Standard web request metadata such as IP address, requested URL, user-agent, and timing data may be processed to deliver the service and protect it from abuse.
Operational files such as checkpoints, witnesses, and verification bundles may be downloaded by any visitor.

What the registry does not do

It does not create an account relationship on its own.
It does not collect payment card information or operate a purchase flow.
It is not intended to publish raw customer submissions or personally identifiable information.

If a separate AttestLayer domain collects commercial, support, or account data, that domain's own privacy policy governs that collection.

Use, sharing, and retention

Registry uses limited operational data to serve public trust material, maintain append-only transparency endpoints, protect availability, and satisfy legal obligations. AttestLayer does not sell personal data collected through the Registry surface.

Public registry materials may remain available as part of the integrity and transparency function of the service. Ordinary operational logs are retained only as long as reasonably necessary for operations, security, and legal compliance.

Contact

Questions about registry privacy can be sent to contact@attestlayer.com. Security-specific questions can be sent to security@attestlayer.com.

Registry is a public read-only transparency surface. It is not a checkout, subscription, or customer account portal.

Additional legal provisions

Warranty disclaimer. To the maximum extent permitted by law, the registry.attestlayer.com surface, its public registry workflows, manifests, receipts, signed material, and related public material are provided on an as-is and as-available basis. AttestLayer disclaims all warranties, express or implied, including merchantability, fitness for a particular purpose, non-infringement, accuracy, completeness, uninterrupted availability, and any warranty that the service or its output will satisfy a specific buyer, procurement, security, audit, certification, insurance, regulator, payment, or legal outcome. AttestLayer outputs are evidence packages, not audit opinions, certifications, legal conclusions, or approval decisions.

No emergency reliance. The registry.attestlayer.com surface is not designed for, and must not be relied on as, an emergency, life-safety, medical, fraud-prevention, regulatory-filing, or time-critical compliance system. Counterparties and downstream parties must use appropriate emergency, regulatory, legal, financial, medical, or security channels for time-critical or safety-critical matters.