Verdini is a real-time environmental monitoring platform operated by Verdini in collaboration with its co-venture partners. Our platform at verdini.world enables project developers, investors, governments, and researchers to monitor, verify, and report on land restoration, biochar production, wildlife monitoring, and related environmental projects.
For GDPR purposes, we act as the Data Controller for personal data collected through verdini.world. For project data uploaded by registered organisations, we act as a Data Processor on behalf of those organisations.
Account & identity data: Name, email address, organisation name, country, and role when you register or apply for early access.
Payment data: Billing information processed securely through Stripe. Verdini does not store card numbers — these are handled entirely by Stripe (PCI DSS Level 1 certified).
Project data: GPS coordinates, satellite imagery, sensor readings, supply chain records, carbon calculations, and evidence reports uploaded to or generated by the platform.
Usage data: Pages visited, features used, browser type, IP address, and session duration collected automatically via Cloudflare.
Communications: Messages sent through contact forms, feedback widgets, or email correspondence with our team.
KYB verification data: Certificate of Incorporation, government-issued ID, and proof of address collected for Know Your Business verification as required under EU AMLD5/6.
We do not use your personal data for advertising. We do not sell your data to third parties. We do not use your project data for training AI models without explicit consent.
We share data only with trusted service providers necessary to operate the platform:
All sub-processors are bound by data processing agreements. We do not share data with any other third parties without your explicit consent.
Some of our service providers operate outside the European Economic Area (EEA). Where data is transferred outside the EEA, we ensure adequate safeguards are in place through Standard Contractual Clauses (SCCs) approved by the European Commission, or equivalent mechanisms. Clerk and Stripe operate under EU-US Data Privacy Framework certification.
After cancellation, your evidence data and reports remain accessible for 90 days, after which you may request a full data export under your GDPR rights. No data is deleted without your explicit instruction during this period.
You have the following rights regarding your personal data:
To exercise any of these rights, contact us at [email protected] with the subject line "GDPR Request". We will respond within 30 days. We may need to verify your identity before processing the request.
Verdini uses the following types of cookies and local storage:
We do not use advertising cookies, Facebook Pixel, Google Analytics, or any other cross-site tracking technologies. You may clear browser storage at any time through your browser settings.
GPS coordinates, satellite imagery, NDVI data, sensor readings, and carbon calculations uploaded to or generated by Verdini in connection with your project are considered project data, not personal data under GDPR.
You retain full ownership of your project data. Verdini uses it solely to provide the monitoring and reporting services you have subscribed to. Project data listed on the public Explore map is visible to all visitors — you control which projects are listed publicly in your dashboard settings.
For projects involving wildlife GPS tracking of wild animals, data is treated with additional care and shared only with the permit-holding organisation and relevant national wildlife authorities where legally required.
We implement technical and organisational measures to protect your data including:
In the event of a data breach affecting your rights, we will notify you and the relevant Data Protection Authority within 72 hours as required by GDPR Art. 33.
Verdini is a professional business platform. We do not knowingly collect personal data from anyone under the age of 18. If you believe a minor has submitted data to us, please contact us immediately at [email protected] and we will delete it promptly.
We may update this Privacy Policy from time to time. When we make material changes, we will notify registered users by email at least 14 days before the changes take effect. Continued use of the platform after that date constitutes acceptance of the updated policy. The current version is always available at verdini.world/verdini-privacy.html.
For any privacy-related questions or to exercise your GDPR rights:
Verdini
Email: [email protected]
Subject line: "Privacy / GDPR Request"
If you are not satisfied with our response, you have the right to lodge a complaint with the Your local Data Protection Authority:
www.imy.se · [email protected] · +46 8 657 61 00
EU residents may also contact their national data protection authority.