Security Features when Sharing a KYC Package

Avallone protects your data by safeguarding sensitive information, preventing unauthorized access, and mitigating the risk of accidental data breaches, ensuring the confidentiality, integrity, and availability of valuable data.


Find out about security features on Avallone:


Link expires after seven days or after one-time access

When you share a KYC package with any counterparty, the recipient(s) in the package will receive a one-time link to a secure download portal containing the particular KYC package you shared. Each recipient will receive their own link and download portal. The link expires after seven days or if the recipient accesses and downloads the package. This way, Avallone ensures that multiple people cannot access the same link.

Email example when downloading the KYC package

After you have shared


Safelist counterparty domains to avoid sending data to the wrong domains

A Safelist is a list of the trusted counterparties you would like to share your KYC information with. Avallone works with email domains. For example, if you want to share information with Avallone, you must safelist Avallone first under its @avallone.io email domain. This way, you ensure that you do not share information with an untrusted domain by accident (e.g. when slightly mistyping an email address). You can add as many trusted Counterparties to your Safelist as you want. Domains can be added via the Settings or directly when preparing a KYC package for sharing.

Safelist a third party domain


Set up a 2FA (text message or voice) for accessing your KYC packages

When sharing a KYC package, you can set up that the recipient can only access the package through a 2-Factor-Authentication, either via SMS confirmation or via voice call (can also be used for landlines). This adds an extra layer of security to your KYC packages.

Access KYC package through extra 2FA authentication

Share a KYC package - Officers

Share a KYC package - Companies

Share a KYC package - Responder


Revoke access to already shared packages

Once a package is shared, you can easily revoke access to the recipients again if they haven’t downloaded the package yet and you decide they shouldn’t receive it after all.

Revoke access from a shared package


Activity trail for what has happened for each created/shared KYC package

Each created and shared KYC package has its own Activity record, which helps you understand what has happened on your package over time. For example, who you have shared the package with, who has accessed and downloaded the package, and who has downloaded the package internally.


Login via Single Sign-On (SSO)

Users can conveniently sign into Avallone using Single Sign-On.

Single Sign-On (SSO)


Related topics:

Safelist a third party domain

After you have shared

Share a KYC package - Officers

Share a KYC package - Companies

Share a KYC package - Responder

Single Sign-On (SSO)


Need more help?

Contact us on support@avallone.io and we will get in contact with you as fast as possible.