Terms of Service

Terms of Service

Welcome to myID Africa, a product of pocketOne Ltd. These Terms of Service ("Terms") govern your use of the myID website at https://myid.africa and any related services. By accessing or using our site or services, you agree to these Terms.

1. Services

myID enables secure, privacy‑preserving identity verification across African borders. Specific features and service levels may be provided under separate agreements with organisations that integrate with myID.

2. Eligibility

You must have the legal capacity to enter into these Terms and comply with applicable laws. Additional eligibility requirements may apply to organisational integrations.

3. Accounts

If you create an account or use credentials, you are responsible for maintaining the confidentiality of your login details and for all activities under your account.

4. Acceptable Use

• Do not use the site or services for unlawful purposes or to violate others’ rights.
• Do not attempt to access systems without authorisation or interfere with service operation.
• Do not transmit malware, spam, or engage in abusive conduct.

5. Intellectual Property

All content, trademarks (including “myID”), logos, and software are the property of pocketOne Ltd. or its licensors. You receive a limited, non‑exclusive, revocable licence to access and use the site for its intended informational purposes.

6. Qualified Electronic Signatures (QES)

myID provides a Qualified Electronic Signature function under Regulation (EU) No 910/2014 (eIDAS) as amended by Regulation (EU) 2024/1183 (eIDAS 2.0). By using this function, you acknowledge and agree:

• Legal equivalence — A Qualified Electronic Signature has the equivalent legal effect of a handwritten signature under eIDAS Article 25(2). You are legally bound by any document you sign using QES.
• Signer responsibility — You must review the full content of any document before applying your signature. Once signed, the document and your signature are permanently linked. You are solely responsible for verifying the accuracy and intent of what you sign.
• Signing key custody — Your QES signing key is generated and stored within a Hardware Security Module (HSM) operated under the control of pocketOne Ltd. The private key is non‑exportable and never leaves the HSM. Personal certificates imported from external providers (e.g., ssl.com, DigiCert) via FIDO2 hardware tokens remain under your custody.
• Certificate and identity binding — Your QES certificate is bound to your verified identity. You must not permit any other person to use your signing credentials.
• Timestamping — Signatures include an independent RFC 3161 timestamp from a trusted timestamp authority. This timestamp provides evidence of when the signature was created.
• Evidence retention — Signed documents and associated evidence packages (audit trail, certificate snapshots, verification reports) are retained for a minimum of seven (7) years in accordance with eIDAS trust service obligations. You may request earlier deletion of the document content under GDPR Article 17, but anonymised evidence metadata will be retained for the statutory period.
• Verification — The verification function checks signature integrity, certificate validity, revocation status, trust chain, and timestamp. A result of "Valid" is displayed only when all checks pass. Partial or failed checks are clearly disclosed. Verification results do not constitute legal advice.
• No guarantee of third‑party acceptance — While QES has legal equivalence to handwritten signatures within the EU, acceptance by specific third parties, courts, or jurisdictions outside the EU is not guaranteed by pocketOne Ltd.

7. Privacy

Your use of the site and services is subject to our Privacy Policy. We process personal data in accordance with applicable law, including GDPR, eIDAS 2.0, and UAE Federal Decree‑Law No. 45 of 2021.

8. Disclaimers

We provide the site and services “as is” and “as available” without warranties of any kind, to the maximum extent permitted by law.

9. Liability

To the fullest extent permitted by law, pocketOne Ltd. and its affiliates will not be liable for indirect, incidental, special, consequential, or punitive damages, or any loss of profits or revenues.

For QES signing: pocketOne Ltd. is responsible for the correct operation of the signing infrastructure and HSM key custody. pocketOne Ltd. is not liable for consequences arising from documents you chose to sign, errors in document content, or your failure to review a document before signing.

10. Indemnity

You agree to indemnify and hold harmless pocketOne Ltd. and its affiliates from any claims arising from your misuse of the site or services, violation of these Terms, or your use of the QES function to sign documents whose content you did not verify.

11. Dispute Resolution for Signed Documents

If a QES signature is challenged, the evidence package generated at signing time (including document hash, certificate snapshot, timestamp, and audit trail) serves as the primary evidentiary record. pocketOne Ltd. will cooperate with lawful requests from courts and regulatory authorities to produce evidence packages. Disputes about the content or intent of signed documents are between the signing parties; pocketOne Ltd. acts as a trust infrastructure provider and is not a party to signed agreements.

12. Termination

We may suspend or terminate access to the site or services if you violate these Terms or where required by law. Termination does not affect the validity of signatures already applied or the retention of evidence packages for the statutory period.

13. Changes

We may update these Terms from time to time. We will post the updated version here with the effective date. Continued use indicates acceptance of the changes. Material changes affecting QES signing rights or evidence retention will be communicated via the app at least 30 days before taking effect.

14. Governing Law

These Terms are governed by the laws of the Republic of Estonia, without regard to conflict of law rules. For QES matters, Regulation (EU) No 910/2014 (eIDAS) as amended applies directly.

15. Contact

For questions about these Terms, contact us at info@myid.africa. For privacy matters, see our Privacy Policy. For QES‑specific queries, contact trust@myid.africa.