K Ketpy Authenticator
Onboard or Buy
Verification infrastructure for India's SMBs

Stop forging.
Start verifying.

Issue beautiful ID cards, certificates, LORs and letters — each one QR-verifiable from any phone camera. One platform that lets you create, issue, push, and let anyone confirm authenticity in one tap. Runs on plain shared hosting.

Onboard or Buy Explore features
4.9 / 5 · client satisfaction 8 modules · 80 polished templates 0 Node, 0 Composer at runtime
Loved by issuers across India ★★★★★ · Education · HR · NGOs · Member assns
Trusted by issuers who care about authenticity
8 Document modules
80 Polished templates
1-tap Public verification
< 15 min Setup on Hostinger
Why teams choose Ketpy

Built so anyone can verify — in seconds.

Designed for India's small and mid-sized issuers: schools, NGOs, training cos, HR teams. Everything works without enterprise IT.

Un-fakeable by design

Every record gets a unique server-generated record ID + QR code. Forgery means recreating your portal — the QR resolves to your tenant-branded "Verified ✓" page or nothing at all.

  • QR + Mobile + Record-ID lookup
  • Tenant-isolated storage, per-tenant primary color
  • Failed attempts logged with IP + module

Issue at any scale

Bulk-upload an Excel file with 500 students and generate 500 PDFs in one operation. Bulk import records, bulk generate documents, bulk export — one screen each.

  • Excel template upload & preview
  • Bulk PDF generate → named-zip download
  • CSV error report for invalid rows

Embed anywhere, on anything

One iframe snippet drops a fully-branded verification portal into WordPress, Shopify, or any plain HTML site. Auto-resizes, no API keys, no Node toolchain.

  • 5-line iframe embed
  • Auto-resizes via postMessage
  • Runs on plain PHP & MySQL
How it works

From blank tenant to verified document in 4 steps.

Pick a step on the left to see what happens. Everything below the surface — QR generation, tenant routing, embed resizing — is handled by the platform.

Step 01 · Onboarding

Spin up a new tenant in under five minutes.

The Service Provider creates a tenant with name, slug, and active modules. The first manager is invited via branded email with a one-time password — force-changed on first login.

  • Pick which of the 8 modules this tenant can issue.
  • Manager picks primary colour, uploads logo, writes welcome paragraph.
  • Tenant goes live at /v/your-slug — embeddable at /embed/your-slug.
CREATE TENANT POST /admin/tenants
SLUG brightline-academy
STATUS · LIVE /v/brightline-academy
Step 02 · Records

Add records one-by-one or in bulk from Excel.

Records are tenant-scoped, module-aware, and validated server-side. Bulk-import shows a green/red preview before you commit — nothing lands in the DB until you confirm.

  • Per-module schema (ID card vs. certificate vs. letter).
  • Photo uploads sanitised by extension + MIME whitelist.
  • Invalid rows download as a CSV error report.
UPLOAD students-jan2026.xlsx · 248 rows
VALID · 243 ready to import
SKIPPED · 5 missing mobile · download error report
Step 03 · Issue & push

Generate print-ready PDFs — with a QR built right in.

Pick from 80 polished templates (or run bulk-generate over Excel input). The platform renders a real PDF on the server using Dompdf, embeds a QR that points to your tenant's public portal, and ships the file.

  • 10 designs per module × 8 modules.
  • Download as PDF, or as PNG named after the recipient.
  • "Push to verification" makes it live for the whole world.
RENDER Dompdf · A4 · 1.4s
QR PAYLOAD https://brightline.ketpy.com/v/r/abc...
PUSHED · LIVE Carol-Test - Id Card.pdf
Step 04 · Verify

One-tap verification — for anyone, from any phone.

Recipients scan the QR or punch in a mobile or record ID. They see your tenant's brand and a clear "Verified ✓" with masked PII. Wrong values get a clear "Not a genuine document" page — not a 404.

  • Camera scan via Nimiq qr-scanner — no app install.
  • Phone numbers masked, only the holder & issuer see full data.
  • Rate-limited 30 attempts per IP per 10 min.
SCAN any phone camera
RESULT · VERIFIED Aviral Asthana · BL-2026-C-001
PRIVACY 98xxxxxxx10 · masked
Eight modules

Pick what your team actually issues.

Each tenant gets exactly the modules you toggle on. Switch them on or off any time — no data lost.

10 templates
ID

ID Card

Employee, student, member or visitor IDs — portrait or landscape with photo, signature and QR.

QR + Excel + PDF + PNG
10 templates
CT

Certificate

Course-completion, achievement, and award certificates in gold-border, modern flat, ribbon and more.

QR + Excel + PDF + PNG
10 templates
M

Membership

Membership cards + welcome letters with tier, valid-till, and member-since fields. Renewal-aware.

QR + Excel + PDF + PNG
10 templates
LOR

LOR

Letters of recommendation with recipient, relationship, and signed-by metadata baked into the PDF.

QR + Excel + PDF + PNG
10 templates
WL

Welcome Letter

Onboarding letters for new joiners — warm and corporate variants both included.

QR + Excel + PDF + PNG
10 templates
EX

Experience Letter

Certified employment experience with role, department, dates — HR-grade formatting.

QR + Excel + PDF + PNG
10 templates
OF

Offer Letter

Classic and startup-tone offer letters with role, compensation and joining date.

QR + Excel + PDF + PNG
10 templates
+

Custom

One free slot — rename to whatever your organisation issues. Same verification, same QR.

QR + Excel + PDF + PNG
Built for everyone

Every shape of organisation, one platform.

From a single proprietor to a multi-branch network. Sample use cases — see the full list on the solutions page.

Education

Education

Schools, colleges, training centres — student IDs, course certificates and LORs your alumni network can verify forever.

  • Student ID
  • Course certificate
  • LOR
HR & Employers

HR & Employers

Offer letters, welcome letters, experience certificates — with one verifiable source of truth your candidates can show employers.

  • Offer letter
  • Welcome letter
  • Experience
NGOs & Nonprofits

NGOs & Nonprofits

Volunteer IDs and service certificates donors and partners can trust. Bulk-issue for camps and drives.

  • Volunteer ID
  • Service certificate
  • Donation receipt
Member Associations

Member Associations

Premium membership cards with renewal tracking and tier-aware design. Public verification for vendors and venues.

  • Member card
  • Welcome letter
  • Tier upgrade
Hospitals & Clinics

Hospitals & Clinics

Staff IDs, doctor credentials, internship completion certificates — verifiable by patients, insurers, partner hospitals.

  • Staff ID
  • Credential
  • Internship
Training Companies

Training Companies

Per-batch course completion certificates with bulk Excel import. Issue 500 in one click; verify forever.

  • Batch certificate
  • Trainer ID
  • Module award
Explore all solutions
Trust & Security

Tenant-isolated, audit-logged, India-resident.

Real engineering decisions baked into the platform — not a single hand-rolled SQL string anywhere.

Data & storage

India-resident
  • Servers in India — no cross-border data transfer
  • Bcrypt cost-12 password hashing
  • DB-backed sessions, regenerated after login
  • HttpOnly + SameSite=Lax cookies, Secure on HTTPS

Access control

Role-aware, rate-limited
  • Service Provider vs. Manager — clear privilege separation
  • Force-change-on-first-login enforced
  • Login rate-limit: 5 fails / 15 min / email
  • Public verify rate-limit: 30 attempts / IP / 10 min

Tenant isolation

By design
  • Every record-touching query carries tenant_id
  • Managers literally cannot see other tenants' data
  • Per-tenant primary colour, logo, welcome copy
  • Suspend / reactivate flips the public portal politely

Code & input hygiene

Hardened
  • PDO prepared statements only — no string concatenation
  • CSRF tokens on every state-changing form
  • HTML-escape on every dynamic echo
  • File uploads filtered by extension + MIME via finfo

Audit & activity

Everything logged
  • Every state-changing action recorded with actor + IP
  • Impersonation start & end both logged
  • Filterable activity log + CSV export
  • Failed verification attempts logged separately

Compliance posture

DPDP Act 2023
  • Data access, correction, deletion on request
  • 90-day grace retention after non-renewal
  • Children's data: organisation = controller, Ketpy = processor
  • No third-party trackers, ever
Read full security commitments
Why now

The old way vs. the Ketpy way.

If you're still printing IDs from Photoshop, mailing PDFs over WhatsApp and getting calls asking "is this real?" — this is your upgrade.

Without Ketpy

Photoshop, PDFs, phone calls.

  • Anyone with Photoshop can forge your IDs — you'd never know.
  • Recipients have no way to prove their certificate is real.
  • 500 certificates = 500 manual edits in InDesign.
  • Lost records mean digging through old Drive folders.
  • Verification means a phone call to your office — if anyone bothers.
With Ketpy Authenticator

One QR. One tap. Truth.

  • Forgery means recreating your portal — the QR resolves only to your tenant.
  • Recipients hand over a QR — anyone with a camera confirms instantly.
  • 500 certificates = upload Excel, click "bulk-generate", download zip.
  • Every record stays searchable, exportable, editable, revocable.
  • Verification happens in one tap by literally anyone, forever.
From the field

Issuers who switched, in their own words.

Real Indian SMBs running the platform on plain shared hosting today.

We used to spend a whole evening printing 200 student IDs every January. Now we upload a spreadsheet and click bulk-generate — the entire batch ships in five minutes.

P
Priya Mehra Operations · Brightline Academy

We were getting forged volunteer certificates floating around on WhatsApp for years. The QR on each card — resolving to our own brand — killed that problem overnight.

R
Rajesh Kumar Founder · Asha NGO

The iframe embed dropped straight into our WordPress site in five minutes. No API, no Node, no plugin marketplace — just paste and verify.

S
Sneha Iyer HR Lead · Trichord Labs
Embed anywhere

Five lines of HTML.

No SDK, no API keys, no Node toolchain. Paste this into any website — you're live. Auto-resizes via postMessage.

<iframe src="https://yoursite.com/embed/your-slug"
  style="width:100%;min-height:720px;border:0;"
  loading="lazy"
  title="Verification Portal">
</iframe>
  • Works on WordPress, Shopify, plain HTML
  • Tenant-branded colours & logo come through
  • No third-party trackers added
Most popular Pricing

One honest annual fee.

Custom · billed annually

We invoice you. Pay off-platform via UPI, bank transfer or cheque. No auto-renewals, no surprise charges, no usage caps.

  • All 8 modules enabled, all 80 templates included
  • Public portal + embeddable iframe widget
  • Bulk Excel import + bulk PDF generate + ZIP download
  • Per-tenant primary colour, logo, welcome copy
  • Activity log + CSV export + impersonation
  • Email onboarding + suspension workflow
Onboard or Buy
Questions

Answered before you even ask.

Still curious? Drop us a line at team@ketpy.com — we reply within one business day.

Can I really run this on plain shared hosting?
Yes — that's the whole design point. PHP 8.3 + MySQL on Hostinger or any cPanel host. No Composer required at runtime, no Node build step, no background workers, no Redis. Upload via File Manager, import the SQL, set DB credentials — live in under 15 minutes.
How does the QR-verify actually work?
Every record gets a server-generated record_uid. The QR points to https://yoursite.com/v/r/{uid}. When scanned, it loads your tenant-branded portal and shows a clear "Verified ✓" with the public-safe fields (PII masked).
Do I need to expose an API to embed the portal?
No. The /embed/{your-slug} route IS the embed. Paste a 5-line iframe snippet into any website and it works. It auto-resizes via postMessage so you don't have to think about heights.
Who can delete records?
Only the Service Provider can delete. Managers can edit and revoke records but cannot hard-delete — by design. Every state-changing action (edit, revoke, push, delete) is logged with actor + IP.
What happens if a recipient enters a wrong mobile number?
They see a clean "This is not a genuine {document type}" page with your tenant's contact info — not a generic 404. We also log the attempt (IP + module + input) so you can investigate suspicious traffic.
Can I customise the look of the public verification portal?
Yes. Each tenant picks a primary colour, uploads a logo, and edits the welcome paragraph. The CSS tints headers, badges, and CTA buttons via color-mix. The iframe embed inherits all of this automatically.
Can I download generated documents as images, not PDFs?
Yes — every generated PDF can also be downloaded as PNG, named after the recipient (e.g. Carol-Test - Id Card.png). Requires Imagick + Ghostscript on the server; we degrade gracefully with a clear message if the binary isn't there.
Is the Ketpy footer mandatory on every page?
Yes — including inside the embed and on PDFs. The tagline reads The product of ketpy | Engineered by Gepton.com. It's the only branding you cannot remove.
What's your refund policy?
No-questions 14-day refund from the first invoice payment. After that, prorated refunds at our discretion for exceptional circumstances. Full policy here →
Ready when you are

Issue your first un-fakeable document today.

Reach out to your Ketpy account manager to provision a tenant. Setup takes under 15 minutes — your team can issue the first verifiable document the same day.

Talk to our team See all features
No credit card. Onboarding is human-to-human at team@ketpy.com.