What Data Privacy and Security Practices are Followed?

What Data Privacy and Security Practices are Followed?

Data Privacy

Veracity adheres to the EU-U.S. Privacy Shield Framework to help satisfy GDPR requirements and maintain an annual certification. Please review our online privacy policy (https://veracity.it/privacy-policy) for more information about what is covered, what information we collect, and your rights to access and transfer your personal data. You can view our certification for the Privacy Shield Principles and Program here: https://www.privacyshield.gov/participant?id=a2zt0000000XeyrAAC&status=Active.  

Information Security Practices

The LRS is currently available in an approved FEDRAMP environment and has been granted an Authority to Operate (ATO) in several other DoD environments. The Veracity team has several staff members that maintain a Security+ certification and follow a Written Information Security Program (WISP). We also employ 3rd party annual vulnerability pen testing.

Security and compliance is a shared responsibility between Veracity and the cloud service providers used for Veracity Learning. AWS manages the security of the cloud, MongoDB Atlas manages the security of the database, and Veracity manages Veracity Learning’s application security. The AWS cloud infrastructure that hosts the Veracity Learning SaaS product and the MongoDB Atlas cloud infrastructure that hosts the databases are both conformant with many security frameworks. 

In order to protect against unforeseen service outages, data that is lost or stolen, and other potential security incidents, Veracity carries Errors & Omissions and Cyber Liability insurance. The E&O coverage applies to professional services and the Cyber Liability applies to a wrongful act or data breach occurring under a data privacy or network security incident.

Veracity’s security artifacts can be provided to customers upon request.


    • Related Articles

    • What Are the Reasons to Use More Than One LRS Instance?

      The Veracity Learning system features a multi-instance architecture, which allows users to create more than one LRS database instance. Users can create up to a certain number of separate LRS instances depending on their account tier. Each LRS ...
    • What is xAPI and What is an LRS?

      The Experience API (xAPI) is a specification that allows systems to store and retrieve data from a wide range of learning experiences. The specification is comprised of two main components: The data model - The xAPI data model is a JavaScript Object ...
    • What is Veracity Learning?

      Veracity Learning is a software platform for recording and reporting on learning experience and performance data using the Experience API (xAPI) specification. The core capabilities are described below. Veracity Learning is… A Learning Record Store ...
    • How Does the LRS Integrate With an LMS?

      Many LMS products do not support launching, tracking, or providing reports and analytics for xAPI content. A Learning Record Store (LRS), such as Veracity Learning, can be integrated with an LMS to augment an LMS with these capabilities. In addition, ...
    • How Do I Request a Demo?

      To request a demo of Veracity Learning, please submit a request. When submitting the request, select “LRS Demo Request” under the additional information section in the form.