Institute of Digital Remediation
Effective Date: April 6, 2026 · Last Updated: April 6, 2026
IDR Shield is operated by the Institute of Digital Remediation ("IDR," "we," "us," or "our"). We provide accessibility compliance documentation, monitoring, and evidence management services for e-commerce merchants. We are not a law firm and do not provide legal advice.
For privacy-related questions, contact us at privacy@idrshield.com.
Information you provide directly:
Information collected automatically:
When you activate IDR Shield membership, a public verification page is created at idrshield.com/verify/[yourdomain]. This page displays your domain, compliance status, last scan date, and Registry ID. It is intentionally public — its purpose is to provide verifiable proof of your compliance posture to any third party who checks.
If you cancel your membership, your registry record transitions to "Expired" status. It is not deleted, as it forms part of your historical compliance evidence record.
By providing your email address, you consent to receive transactional and membership communications from IDR Shield, including scan results, compliance alerts, and membership updates. We use SendGrid to deliver these emails from hello@idrshield.com.
You may unsubscribe from non-transactional emails at any time by clicking the unsubscribe link in any email or contacting us directly. Transactional emails related to your active membership cannot be disabled while your membership is active.
We do not sell, rent, or trade your personal information. We share data only with the following service providers who help us operate the platform:
Each provider is contractually bound to protect your data and use it only to provide their services to us.
Scan receipts and evidence logs are retained indefinitely as part of your compliance record — this is a core feature of the service, not a limitation. Your email address and membership data are retained for the duration of your membership and for a reasonable period after cancellation for record-keeping purposes.
If you wish to request deletion of your personal data, contact privacy@idrshield.com. Note that scan receipts and registry records cannot be deleted as they form cryptographically signed immutable records.
All scan receipts are SHA-256 hashed and stored immutably. Data in transit is encrypted via TLS. We do not store payment card information. Access to member data is restricted to authenticated users via time-limited magic link tokens.
Depending on your location, you may have rights to access, correct, or request deletion of your personal data. To exercise any of these rights, contact us at privacy@idrshield.com. We will respond within 30 days.
IDR Shield does not use tracking cookies or advertising cookies. We use session tokens stored in your browser's local storage solely to maintain your authenticated portal session. These are not used for tracking or advertising purposes.
IDR Shield is a business-to-business service. We do not knowingly collect personal information from anyone under 18. If you believe a minor has provided us with personal information, contact privacy@idrshield.com.
We may update this Privacy Policy as our services evolve. Material changes will be communicated to active members by email. Continued use of the service after such notification constitutes acceptance of the updated policy.
Privacy Contact
Institute of Digital Remediation
Email: privacy@idrshield.com
Website: idrshield.com
Institute of Digital Remediation
Effective Date: April 6, 2026 · Last Updated: April 6, 2026
IDR Shield is an accessibility compliance documentation and monitoring service operated by the Institute of Digital Remediation. The service includes automated accessibility scanning, SHA-256 signed scan receipts, a public registry record, weekly monitoring, and a Defense Package PDF.
IDR Shield is not a law firm and does not provide legal advice. The documentation and evidence records generated by IDR Shield are compliance tools intended to support your defensible posture — they are not a legal guarantee of any outcome in any legal proceeding.
You must be at least 18 years old and authorized to bind your business to these terms. By using IDR Shield, you represent that you are the owner or authorized representative of the store domain you submit for scanning.
Membership is activated upon payment of the applicable fee through our payment processor. Your membership entitles you to the features described at the time of purchase, including your registry record, Defense Package PDF, badge embed code, and monitoring services.
Founding Member status is permanent and non-transferable. The $29/month rate locked in at founding activation applies for as long as your membership remains continuously active. Cancellation forfeits the founding rate.
You agree to use IDR Shield only for your own store domains or domains you are explicitly authorized to represent. You may not:
Your IDR Verified badge is a live embed that calls our API on every page load. Displaying the badge requires an active membership. If your membership lapses, the badge automatically displays "UNVERIFIED" status.
Your public registry record at idrshield.com/verify/[domain] remains accessible after cancellation in "Expired" status. This is by design — the historical record is part of your compliance evidence.
Scan results reflect the accessibility state of your store at the moment of scanning. IDR Shield uses axe-core, an industry-standard accessibility evaluation engine maintained by Deque Systems. Results are not legal opinions and do not constitute certification of compliance with any law or regulation.
Scan receipts are SHA-256 hashed and stored immutably. Once generated, a receipt cannot be altered, deleted, or reissued with different content.
Important: Accessibility compliance is a complex, evolving legal area. IDR Shield's documentation is designed to support your compliance posture — not to guarantee immunity from legal action. We strongly recommend consulting qualified legal counsel regarding your specific obligations under applicable accessibility laws.
Founding Membership activation fees are non-refundable after your store has been scanned and your registry record has been created. Monthly subscription fees are billed in advance and are non-refundable for the current billing period. You may cancel at any time and your membership will remain active through the end of the current billing period.
To the fullest extent permitted by law, IDR Shield and the Institute of Digital Remediation shall not be liable for any indirect, incidental, special, consequential, or punitive damages, including but not limited to lost profits, loss of data, or any legal costs or settlements arising from accessibility claims against your store.
Our total liability to you for any claim arising from your use of the service shall not exceed the amount you paid us in the 12 months preceding the claim.
IDR Shield is provided "as is" without warranties of any kind. We do not warrant that the service will be uninterrupted, error-free, or that scan results will be exhaustive or legally sufficient for any particular purpose. Settlement ranges referenced in our marketing materials reflect publicly available historical case data and are not predictions of any specific legal outcome.
The IDR Shield brand, badge design, scanning protocol, and all associated documentation are proprietary to the Institute of Digital Remediation. Your scan receipts and registry record are yours — you own the compliance documentation generated for your domain. You may not reproduce, distribute, or commercially exploit the IDR brand, badge design, or protocol without written permission.
We reserve the right to suspend or terminate your membership if you violate these terms, misrepresent your compliance status, or use the service in a manner that harms other members or the integrity of the IDR Registry. In such cases, no refund will be issued.
These terms are governed by the laws of the State of Florida, United States. Any disputes arising from these terms shall be resolved in the courts of Florida.
We may update these Terms of Service as the service evolves. Material changes will be communicated to active members by email at least 14 days before taking effect. Continued use of the service after the effective date constitutes acceptance of the updated terms.