Last updated: 2026-06-12

Verithia Privacy Policy

Verithia helps you capture important photos with cryptographic proof, share them normally, and let anyone verify whether a shared photo still matches its original record. This policy describes exactly what Verithia collects, what it deliberately does not, and how your information is handled. It is written to match what the app and service actually do.

At a Glance

• Verithia is currently free to use, with no in-app purchases, and we do not collect any payment information.
• We use no analytics, advertising, trackers, or third-party crash reporting.
• We do not sell your data, photos, location, or proof records.
• Your photos are processed only long enough to seal or verify them, then discarded. Verithia is designed not to keep your photo files on its servers after processing.
• Your evidence is stored encrypted on your device.
• Capturing a proof requires Sign in with Apple and a precise location fix. Verifying a photo does not require an account.

What Verithia Collects

When you capture a proof, Verithia creates and cryptographically signs a capture record on your device that includes:

• Capture details and precise location. The capture time, your precise GPS location (latitude and longitude, accuracy, altitude, and signals that indicate whether the location was real or simulated), your device model and iOS version, the app version, and the chosen security level. Verithia requires a trusted location fix to capture, so precise location is part of every proof.
• Integrity keys, not tracking identifiers. To prove a photo came from a genuine, unmodified Verithia app on a real Apple device, Verithia uses Apple App Attest and a key generated in your device’s Secure Enclave. These prove app and device integrity. They are not advertising identifiers, and Verithia does not collect your device’s serial number, advertising ID, or vendor ID.
• Photo fingerprints. Cryptographic hashes of the image (such as SHA-256 and perceptual hashes) used to verify it later.
• The photo itself, transiently. Your original photo is uploaded over an encrypted, certificate-pinned connection so the server can seal it and return the sealed copy. See “How Your Photos Are Handled.”

When you create an account, Verithia uses Sign in with Apple and receives a stable Apple user identifier and, if you allow it, an email address — which may be an Apple Private Relay address rather than your real email. Sign in with Apple is required to capture proofs, but not to verify a photo someone sends you.

How Your Photos Are Handled

Verithia does not keep your photo files on its servers. When you seal or verify a photo, the image is processed transiently — only long enough to embed or check proof — and then discarded. Verithia is designed not to retain your original or sealed photo bytes in durable server storage after that processing. Your sealed photo is returned to your device, saved to your Photo Library, and stored in Verithia’s on-device Evidence Library.

Stored on Your Device

The Evidence Library stores your evidence encrypted on your device using AES-GCM, with a key held in your device’s Keychain that is not synced to iCloud. It can include the sealed photo, the original capture, and optional case or property labels and notes. Labels and notes stay on your device and are not uploaded during sealing or verification unless you choose to export a verifiable bundle.

Stored on Verithia’s Servers

To keep a proof verifiable over time, Verithia keeps an append-only proof record containing:

• the proof ID, the signed capture record (including the location and device details above), and the cryptographic hashes;
• the signed server receipt and a signed audit log of proof events;
• your account record (Apple identifier and optional email); and
• the SHA-256 hash of any private share link you create — never the raw link.

These records are designed to be immutable so that verification stays trustworthy. The audit log records events such as when a proof page is viewed, along with the request path, the browser or app user-agent, and a timestamp. It does not store your IP address in these proof records.

Location

Verithia is built around location provenance, so capturing a proof requires a precise, trusted GPS fix, and the coordinates become part of the signed, stored proof record. Verithia requests “while using the app” location access and uses iOS signals to detect simulated or accessory-provided locations. If you do not grant precise location you can still verify photos, but you cannot capture new proofs.

Verifying a Photo and Public Proof Pages

Anyone you share a proof or verification link with can check whether an image still matches it. The verification response returns the proof’s hashes, the server timestamp, the result, and format details — it does not reveal your account identity or the GPS coordinates stored in the proof. Verifying a photo in the app or on this website uploads that photo so it can be checked, after which it is discarded as described above.

Private Proof Links

Verification links use opaque share tokens. Verithia stores only a SHA-256 hash of each token, not the token itself, and you can revoke links you have shared.

Third Parties and Sub-processors

Verithia shares data only with the providers needed to run the service:

• Apple — for Sign in with Apple and App Attest. If paid plans are ever offered, purchases would be handled by Apple.
• Amazon Web Services (AWS) — hosting, database, and key management, where proof records are stored and transient photo processing happens.
• Cloudflare — provides the secure network tunnel that carries traffic to the service.

Verithia does not use analytics, advertising networks, trackers, or third-party crash or telemetry tools. The app contains no third-party tracking code, and this website loads no third-party scripts.

What Verithia Does Not Do

• Does not sell your data, photos, location, or proof records.
• Does not show ads or use advertising identifiers.
• Does not track you across apps or websites.
• Does not collect payment information.

Data Retention and Account Deletion

Proof records are immutable and retained so that verification keeps working. You can delete your account from Settings; doing so removes your server session and any stored subscription records and revokes private share links. Because proof records are immutable, the proof records, hashes, capture metadata (including location), and audit logs are retained as proof-only verification records after deletion. Evidence stored on your device remains on your device until you delete it there.

Security

Verithia protects data in transit with HTTPS and certificate pinning, and at rest with AES-GCM encryption on your device (key held in the Keychain, Face ID protected) and managed encryption keys on the server. Captures are signed in your device’s Secure Enclave and attested with Apple App Attest, and proof records are stored in an append-only, tamper-evident log. No method of electronic transmission or storage is completely secure, however, and Verithia cannot guarantee absolute security.

Children

Verithia is not directed to children under 13, and we do not knowingly collect personal information from them.

Changes to This Policy

We may update this policy. We will revise the date above and, for material changes, provide notice in the app or on this page.

Contact

Support: support@veri-thia.com