For business · plug in, hold nothing

Trust, ready to
plug in.

One identity layer that verifies your customers, staff and visitors against a live face — and shares only the credential, never their raw ID documents. Easy to integrate. Impossible to crack. Live in a single sprint.

Set up a business console See pricing

OIDC native · ISO 27001 certified · Aussie-built

What used to live in five contracts $$$$$

01 IDV vendor Doc + selfie capture

02 Background checks Police, sanctions, RTW

03 SSO seat Per-user, per-month

04 Signing service E-signatures, per envelope

05 Access control Cards, fobs, panels

One TrueVault layer Live

Verify · onboard · sign in · authorise · sign. One contract. One bill. One person, bound to their face.

01 / The shift

A better question to ask your customers.

Verification used to be a single moment in time — collect documents, take a selfie, store the lot, hope for the best. We do something different. Your customer's identity is already bound to their live face. They share a credential with you — not their passport, not their licence, not a single page you'd have to defend in a breach.

The old funnel asked

“What documents did they upload, and where do we store them?”

You hold their passport, licence, payslips and more
Verification expires the moment they walk away
If you're breached, they're breached too

TrueVault asks

“Is this the same real human who said yes the first time?”

Verified against a live biometric, every time
You receive a verifiable credential — never their ID documents
Your customer carries it with them, and chooses what to share

02 / One layer

One layer. The whole funnel.

Most businesses run their identity story across five different vendors. We replace the lot with one cryptographically-anchored credential that carries through every stage of the journey — the same verified person, asked the same calm question, end to end.

Identity

Right to Work, court checks, passports — verified at the source, never copied.

Onboarding

A single OIDC flow that welcomes real customers and quietly turns the rest away.

Sign-in

Passwordless, biometric-backed sessions for customers, staff and partners.

Authorise

A live face check for high-stakes moments — payments, doors, signatures.

Done

A signed credential in your records. No raw ID documents — not now, not ever. Audit log sealed.

Contract

Not five. One vendor relationship, one bill, one renewal calendar.

OIDC

Drop us in like a social login — but for high-assurance verified identities.

30 min

From sign-up to live

A working OIDC integration most teams ship in a single sitting. The paths in are detailed below.

03 / Receipts

What changes when identity is one layer. Measured, on the record.

Real workloads, in real Australian businesses. The numbers below are drawn from production rollouts measured against incumbent-vendor benchmarks — publishable, the same shape they take on inside customer reviews.

Workflow Sector Before → with TrueVault Notes

National Police Checks

Background screening

66 hours 0.8 hours

Average turnaround from an incumbent provider against the same check routed through TrueVault. Verified person, signed credential, no manual handoffs.

Court Checks · ID · Right to Work

AML, HR, onboarding

Days Instant

Three credentials, one identity, one OIDC flow. Issued and signed by us — reviewed by Gilbert + Tobin against the AML/CTF Act.

International student verification

Education

Paper trail At-source

Pre-arrival ID checks paired with at-source academic-qualification verification, through direct integrations with national identity systems (DigiLocker and others).

Figures drawn from production deployments, June 2026. Customer names are commercial-in-confidence and available under NDA.

04 / Integration

Easy in. Easier than the status quo.

Three paths in. Most teams pick more than one. No setup fees on our side, and the migration on yours is genuinely small — point us at your existing identity provider and we'll co-exist with it until you're ready to retire it.

Path 01 0 minutes

No-code dashboard

Sign in, invite your team, start verifying. The full product — onboarding, sign-in, audit log, instant revocation — runs from a fully-featured console. Nothing to install, nothing to deploy, nothing for procurement to chew on.

Best for Whole departments. Proving the case out before the engineers have a sprint for it.

Console · Live queue

AN Aisha Nguyen Verified · 2 min ago

LO Liam O'Brien Pending · in review

MC Margaret Chen Verified · yesterday

Path 02 Under a day

OIDC, published

A standard OpenID Connect flow with endpoints already on public DNS. Drop us in beside your existing identity provider — most teams ship the build in a single sitting, often with Claude Code wiring the routes straight from our docs.

Best for Customer logins, staff SSO, partner federation. The 80% case.

OIDC · Discovery

GET app.truevault.com.au/.well-known/openid-configuration

Standard OIDC. No bespoke SDK. Works with Auth0, Okta, Keycloak, custom IdPs.

Path 03 Your sprint

REST APIs

For complex, asynchronous or back-office flows — webhooks, granular scopes, multi-party OAuth delegation. The same identity layer, exposed at the level of detail your engineers want to work at.

Best for Marketplaces, multi-party workflows, bespoke onboarding chains.

REST · /v1/verifications

POST /v1/verifications

{ "ref":     "ord_9482",
  "scope":   "kyc.full",
  "webhook": "…/hooks" }

No setup fees

on our side, ever

Minimal migration

co-exist with your existing IdP

Claude Code recipes

published, copy-pasteable

Sandbox keys

on first sign-in

Docs developers.truevault.com.au

05 / Auditor cover

The kind of paperwork you actually want to file.

Compliance shouldn't be a side project. We do the heavy paperwork, hold the right certifications, and write the legal opinions that travel to your auditor on day one — not month three.

Legal opinion · Gilbert + Tobin

“Accepting a TrueIdentity credential issued by TrueVault is a legally acceptable and privacy-safer alternative to traditional ‘know your client’ methods that require organisations to collect, hold and manage copies of identity documents.”

Reviewed against the AML/CTF Act 2006 (Cth). Reporting entities can rely on a TrueIdentity credential — no document copies required.

28 Nov 2025

Certified

ISO/IEC 27001

The international gold standard for information-security management. A precondition for government and Tier-1 procurement.

Approved

DVS Gateway Service Provider

A fully-approved gateway for the Australian Government's Document Verification Service. FVS-ready for the 30 Nov 2026 rollout.

Approved

ACIC subcontractor

Authorised channel for National Police Checks — folded into the same identity-orchestration flow.

In flight

SOC 2 Type II

Examination in progress, targeted Q3 2026. Digital ID Act 2024 accreditation follows.

06 / Industries

Built for the rooms where the cost of getting it wrong is real.

Every regulated industry asks the same question of its customers, with different paperwork around it. We bring the same calm, biometric-anchored answer to all of them — and slot it into the systems you already use.

Property · Conveyancing

Identity, settled before settlement.

For the moment a vendor needs to prove who they are inside a 24-hour transfer window. They share their TrueIdentity credential with you — bound to their live face — and we re-check the same person at signing. You never touch a licence or a passport.

In use with real estate agencies, mortgage insurers and conveyancers.

AML & Fintech

KYC the regulator already signed off on.

A credential reviewed by Gilbert + Tobin and accepted under the AML/CTF Act. PEPs and sanctions screening, court-records checks and Right-to-Work — issued by us, signed by us, shared with you as a credential. The source documents stay where they belong: with the person they describe.

Direct issuance of court records, PEPs, sanctions and student-status checks.

HealthTech

The right clinician. The right patient. Every time.

Bind clinician credentials and patient identities to a live face — so prescriptions, records and billing run off the same trusted person. Revoke on the day someone leaves, not the week after.

Foundation deployments across national HealthTech operators.

International education

Identity that travels with the student.

Pre-arrival verification followed by at-source academic checks via integrations with India's DigiLocker and other national systems. One credential, used everywhere it matters — and never copied to your servers.

Pre-arrival programs running with Indian national students.

Ready when you are

Plug us in. Sleep through the audit.

Set up a business console in minutes. Pick a plan when you're ready, or talk to us about Enterprise — we'll model your real numbers, not a tier card.

Set up a business console See pricing Or talk to sales

Trust, ready toplug in.