Getatext — KYC/AML Policy
Last updated: 2025-09-27
1) Scope, principles & risk-based approach
This policy complements our Terms of Service and Privacy Policy. Our goal is to implement anti-fraud and anti-money laundering (AML) measures with low friction for the user. We follow a Risk-Based Approach (RBA): by default, we do not perform routine Know Your Customer (KYC) checks; verification is initiated only when specific risk triggers are met.
Scope: This policy applies to our website, user dashboard, and API, including all payments and deposits. Use for U.S. financial or banking services is strictly prohibited. The use of cryptocurrencies is allowed under specific conditions outlined in our Terms & Conditions. Users must be at least 18 years old.
2) KYC triggers & documentation
KYC verification may be triggered by any of the following:
- Abuse/Risk Indicators: Consistent service failures, number farming, data scraping outside of the provided API, attempts to evade blocks, significant mismatches between IP address, User Agent, and device fingerprints, as well as chargebacks or payment fraud.
- High-Risk Jurisdictions or Services: Use originating from sanctioned or high-risk countries, involvement with U.S. banking or fintech services, or crypto transactions that trace back to U.S.-based on/off-ramps.
- Unusual Activity: Atypically high volume or amounts in transactions, or incidents related to reseller accounts.
- External Requirements: Obligations imposed by law or by our payment processors.
When a KYC check is triggered, we may request the following documentation: legal name, a government-issued ID, a selfie for identity verification, country of residence, proof of address, and/or proof of ownership of the payment method used.
An unjustified refusal to provide the requested documentation may lead to the suspension or termination of your account.
3) AML controls, monitoring & restrictions
Proportional Monitoring: We conduct monitoring based on technical signals, service failure ratios, number replacements, user complaints, and payment chargebacks.
Prohibited/Conditional Services: The use of our services is subject to the restrictions outlined in our Terms & Conditions, which include a prohibition on U.S. financial applications and conditional use for cryptocurrencies.
Measures: Depending on the situation, we may apply measures such as service throttling, imposing limits, placing a temporary hold on benefits, suspending or terminating the account, and blocking any related accounts.
Cooperation: We will cooperate with law enforcement authorities and payment processors upon receiving valid legal requests.
4) Data & retention
KYC Data: We only collect the minimal data necessary for verification, which includes identity, address, and a selfie.
Technical & Anti-Fraud Signals: We collect technical data for security purposes, including IP address, User Agent, a reasonable device fingerprint, timestamps, service failure ratios, complaints, and chargeback information.
Retention Period: KYC data is retained for 5 to 10 years. Technical signals are kept for at least 180 days, which may be extended if necessary. Backups are maintained for a limited time. We do not use this data for behavioral advertising.
5) Providers, transfers & safeguards
We use third-party KYC/AML verifiers, payment gateways, and anti-fraud tools that act as data processors under contractual agreements.
Our telecom and infrastructure partners act as processors for the technical delivery of services, such as number assignment and OTP routing.
International data transfers are protected using Standard Contractual Clauses (SCCs) and other appropriate safeguards.
Resellers are responsible for their own compliance obligations. Getatext acts solely as a processor for the technical delivery of services to them.
6) Outcomes, appeals & reinstatement
Outcomes: A verification process can result in several outcomes: approval, rejection with a specified cause, an inconclusive result requiring more information, or a risk match indicating a connection to sanctions lists or a Politically Exposed Person (PEP).
Measures by Severity: Actions are taken based on severity and may include a warning, service throttling, account limits, manual review, suspension or termination, and blocking of related accounts.
Appeal Process: You can appeal a decision within 10 business days by contacting support@getatext.com. All appeals are subject to a human review. We will provide an initial response within 10 business days, unless the case is particularly complex.
False Positives: If a decision is found to be a false positive, we will conduct a manual review, remove the flag, and reinstate the account, possibly with enhanced monitoring.
7) Law, venue & contact
This policy is governed by the laws of Wyoming, USA, without prejudice to any non-waivable consumer rights. For official communications, please contact us at support@getatext.com or our Telegram at @GeneralManager_Getatext. We will always state the effective date of our policies and notify users of any material changes.