Skip Navigation or Skip to Content

Privacy Policy

 

VeraGov is designed with rigorous privacy, security, and regulatory compliance at its core. At VeraGov, we are deeply committed to protecting your privacy. We adhere to applicable regulatory frameworks and security controls standards. 

This Privacy Policy explains how we collect, use, store, and protect your personal information when you interact with our website or use our services. We collect information that is necessary to operate our business effectively, enhance your user experience, process payments, and fulfill applicable legal and regulatory obligations. We may disclose personal information and other information when required by law, court order, or other legal processes, or if we believe in good faith that disclosure is reasonably necessary to enforce our policies, respond to claims, protect our rights, property, or safety, or that of others.

In providing solutions to government or enterprise customers, VeraGov may act as a data processor under applicable laws. In such cases, our clients control the personal data collected, and VeraGov processes such data solely under their instructions and agreements. Users should refer to the respective client’s policies for further details.

We take the protection of personally identifiable information (PII) and protected health information (PHI) seriously. All such data is encrypted at rest and in transit. Our platform supports multi-tenant isolation, role-based access control (RBAC), and audit logging. VeraGov employs a security-first development lifecycle, which includes automated and manual vulnerability scanning. Our internal team practices least-privilege access, and any external vendor that handles sensitive information on our behalf must meet or exceed applicable standards or equivalent international certifications.

For entities handling or accessing electronic PHI (ePHI), we execute legally binding Business Associate Agreements (BAAs). In addition, our e-signature workflows comply fully with applicable regulations, and we provide downloadable, timestamped copies of signed documents to end users. Our incident response program includes timely breach notifications to users and regulators in accordance with applicable law.

We collect personal information that you provide to us, such as your name, email address, phone number, and billing details. Additionally, we may collect certain technical data through your interaction with our products or services, including your IP address, browser type, device information, and interaction behavior. We may collect sensitive data—such as health-related records—particularly when needed to support claims, eligibility reviews, or regulatory submissions related to systems like those of the Department of Veterans Affairs (VA). We may retain data following service delivery or longer where required by applicable law or business necessity. Claim-related records, forms, and associated metadata may be retained for audit, evidentiary, or regulatory purposes as required by VA rules or other applicable law. Users acknowledge that such data may be subject to legal discovery or VA audit. We may anonymize and aggregate data to improve our services, conduct internal analytics, or develop new offerings, products or services.

Information is collected through a combination of user-submitted forms, secure login sessions, browser cookies, and analytics tools. In some cases, we may receive data from third-party integrations. This data allows us to personalize your experience, maintain service reliability, comply with regulatory mandates (such as VA documentation submission), and provide technical and customer support. By using our services, you acknowledge and consent to the transfer of your data to jurisdictions that may not have equivalent data protection laws.

Your data may be shared with service providers—such as payment processors, authorized VA systems and APIs, and other vendors. These partners assist us in delivering our services securely and efficiently. By using VeraGov, you consent to the disclosure of your information, including claim-related data, to authorized persons and the VA and other authorized government systems, solely as necessary to process claims, verify eligibility, or comply with legal obligations.

We honor applicable privacy rights, including those established under the California Consumer Privacy Act (CCPA/CPRA) for California residents. U.S. users may request access to, correction of, or deletion of their personal information, subject to our legal and regulatory obligations, including obligations to retain data for VA audit, claims verification, or other statutory requirements. 

By using our website or services, you acknowledge and agree to these practices, including electronic consent where applicable under E-SIGN, UETA, or their international equivalents. 

You are responsible for maintaining the confidentiality of your login credentials and any activity under your account. If you suspect unauthorized access, please contact us immediately. 

From time to time, we may send you service updates, newsletters, or promotional messages. Even if you opt out of such messages, we may still send important service or transactional messages.

To protect your data, VeraGov employs comprehensive security protocols aligned with applicable standards. We use encryption in transit and at rest, enforce secure protocols across our services, and require multi-factor authentication for system access. Our security controls include audit trails and routine reviews to ensure compliance and resilience. In the unlikely event of a data breach or material security incident, we will notify affected users in accordance with applicable regulations.

Cookies and similar tracking technologies are used on our website to improve functionality and understand how visitors interact with our content. Session cookies help facilitate features such as report generation, while persistent cookies support login retention and analytics. You can disable cookies through your browser settings; however, doing so may limit functionality, performance or availability of features. 

Our services may contain links to or integrate with third-party websites or applications. We are not responsible for the privacy practices, security, or content of these external sites or applications. We encourage you to review the policies of any third-party services, sites or applications that you interact with.

Our services and website are not intended for use by children under the age of 13, and we do not knowingly collect personal data from individuals under the age of 18. If such data is inadvertently collected, it will be deleted as soon as we become aware of it.

We may revise this Privacy Policy from time to time. Continued use of our services after such updates constitutes your agreement to the revised policy.

 

If you have any questions regarding these Terms or your use of the website, please contact us at support@veragov.com.