KYC FOR LEGAL BODY
What is the verification of a legal body?
The verification of a legal entity is the procedure used to ascertain the identity, legal standing and geographical location of an account representing a public / private body that signed up for CROWDSWARM.
What is the purpose of verifying a public / private body?
In CROWDSWARM we check carefully the documents of the legal bodies that have signed up to use our platform, because in the digital world it is easier to impersonate for a different person or entity for fraudulent purposes. This verification procedure has been structured to protect CROWDSWARM’s users and companies and to prevent fraudsters from operating fraudulently on the platform.
Which are the benefits?
The verification of a legal body is mandatory for legal entities that fall into the business category and allows them to have access to all the CROWDSWARM’s services, thereby having opportunity to launch transparent bug bounty programs.
From the researcher’s point of view, individuals are aware that only companies that have completed the verification and KYC (Know Your Customer) due diligence process are visible on the platform and therefore they can participate with more tranquility and peace of mind. Furthermore, our platform leverages the use of risk scoring to qualify the legal entity to provide transparency to the hackers on the outcome of the verification process. Successful programs executed that demonstrate milestone and progress achievement post program completion will also result in companies increasing their credibility score; enhancing their position as a credible business.
Which are the procedures to complete the KYC verification?
Three aspects are taken into account:
- name of the Internet service provider (ISP);
- date and time of visit;
- web page that brings visitors to CROWDSWARM (referral) and exit pages;
There are different procedures for each type of legal body.
Public Bodies
This category includes schools, universities, hospitals, municipalities and all the national bodies. This category also includes private schools, universities and hospitals officially recognized in the country in which they are based. The required documents are:
- Statute of the body
- Minutes of the last election assembly of a governing body
- Certification of a Manager who appoints the administrators of the account.
This document must contain the following information:
- Official public body organizational bank account details
- Personal information of at least two administrators of the organization
- Entity registration certification
- Administrators email addresses
To complete the geographic verification, a physical letter containing a unique One Time Code (OTC) is sent to the designated administrator and the body have to write this code in a specific online form in its profile before it is activated to start creating bug bounty programs.
Companies
This category includes the for-profit bodies. They have to complete their public profile and in addition the required documents are:
- Identity Document of the Chief Executive Officer
- Identity Document of the Legal Representative
- Chamber of Commerce Trade License
- Company Registration Certificate
- Applicable Tax Reference Number
- Letter of Authorization of at least two administrators
- Official organizational bank account details
- Personal information of at least two administrators of the organization bank account
- Administrators email addresses
How are the received data managed and stored by CROWDSWARM?
User privacy is a very important value for us. Each administrator of legal body is able to change the settings related to the public display of their personal data through their account. Public data linked with public bodies and companies are not modifiable and remain public, in order to offer the most possible transparency to the stakeholders of CROWDSWARM platform.
For more information, see the Privacy Policy page.
KYC FOR SINGLE USER
What is the verification of a single user?
The verification of an individual (single user) is the procedure used to ascertain the identity and geographical location of an individual signed up to CROWDSWARM to participate in bug bounty programs as a researcher.
What is the purpose of an individual’s verification?
The verification of an individual who wants to participate in bug bounty programs as a researcher is a mandatory process to ensure transparency for all stakeholders. There are different levels of verification, depending on the outcome of the different KYC (Know Your Customer) and AML (Anti-Money Laundering) checks that are performed. The procedure is divided into several verification stages and is aimed at preventing fraudsters from participating in non-legitimate activities.
Which are the benefits?
For researchers: improves transparency by enabling researchers to participate with a high level of assurance on the program
For companies: directly helps them establish trust and credibility
What are the procedures needed to complete the verification?
Two aspects are taken into account: Verification of identity and verification of geographical location.
Identity verification: there are several options to verify your identity, each choice with a corresponding score. The possible ways to perform this verification is ordered by sequentially that increase in reliability and accuracy in the final outcome, are:
- Self-certification (write personal information in the specific fields)
- Connection to one or more social accounts
- Upload of an Identity Document
- Perform 3rd party KYC and AML check
Verification of the geographical location: there are several options to verify your physical location. The possible ways to perform this verification is ordered by sequentially that increase in reliability and accuracy in the final outcome, are:
- Self-certification (write user’s location / physical address in the specific field)
- Enable browser localization to obtain geographical location
- Receive a One Time Code (OTC) to the registered mobile number
- Upload documents (Invoice of a domestic bill or certificate of residence)
How are the received data managed and stored by CROWDSWARM?
User privacy is a very important value for us. Each individual can change the settings related to the public visualization of personal data through the own configuration page.
For more information, see the Privacy Policy page.