KYC Verification Policy

To maintain network integrity, prevent fraud, and comply with the directives of telecom operators and financial institutions, BlackSMS ("we," "our," or "us"), operating at https://blacksms.in, enforces a mandatory Know Your Customer (KYC) policy. All corporate accounts, startups, developers, and resellers must successfully complete KYC verification before using our gateway APIs or sending messages.

1. Purpose of KYC

KYC (Know Your Customer) procedures allow us to verify the identity of businesses and individuals operating on our platform. This reduces the risk of phishing campaigns, OTP abuse, illegal loan scams, and unauthorized commercial transmissions, ensuring a safe ecosystem for our partner telecommunication networks and payment processors (such as Stripe, Razorpay, and Cashfree).

2. Required Documentation

Customers must submit valid digital copies of the following documents during account onboarding or registration:

• Business Identification: Goods and Services Tax Network (GSTIN) registration certificate, Permanent Account Number (PAN) card of the business, or Certificate of Incorporation/Partnership Deed.
• Authorized Signatory Identification: Government-issued photo ID of the primary account manager or promoter (e.g., Aadhaar card, Passport, or PAN card).
• Proof of Address: Recent utility bill, lease agreement, or bank statement matching the registered business address.
• DLT Proof: Copy of the active Principal Entity (PE) registration status from a TRAI-approved telecom operator portal showing matching corporate details.

3. Verification Process & Timeline

Once documents are submitted via our customer dashboard, our risk compliance team will review the credentials. The typical verification window is 24 to 48 business hours. During this review period, API features and outbound SMS capabilities remain restricted. We may contact you for further details or video verification if any discrepancies are identified.

4. Rejection and Account Suspension

BlackSMS reserves the right to reject any KYC application at our sole discretion. Reasons for rejection include, but are not limited to: submitting forged or tampered documents, mismatch between DLT registration and business identity, history of spamming, or business models that fall under our Prohibited Businesses list. Accounts that fail to provide requested KYC documents within 7 days of account creation will be permanently deactivated.

5. Data Privacy and Protection

All documents submitted under this KYC policy are encrypted during transmission and stored securely in compliance with our Security and Data Protection Policy. Your KYC details are strictly used for verification purposes and will never be shared with third parties, except when legally requested by regulatory authorities, telecom networks, or law enforcement investigations.