What Data Privacy and Security Practices are Followed?

What Data Privacy and Security Practices are Followed?

Data Privacy

Veracity adheres to the EU-U.S. Privacy Shield Framework to help satisfy GDPR requirements and maintain an annual certification. Please review our online privacy policy (https://veracity.it/privacy-policy) for more information about what is covered, what information we collect, and your rights to access and transfer your personal data. You can view our certification for the Privacy Shield Principles and Program here: https://www.privacyshield.gov/participant?id=a2zt0000000XeyrAAC&status=Active.  

Information Security Practices

The LRS is currently available in an approved FEDRAMP environment and has been granted an Authority to Operate (ATO) in several other DoD environments. The Veracity team has several staff members that maintain a Security+ certification and follow a Written Information Security Program (WISP). We also employ 3rd party annual vulnerability pen testing.

Security and compliance is a shared responsibility between Veracity and the cloud service providers used for Veracity Learning. AWS manages the security of the cloud, MongoDB Atlas manages the security of the database, and Veracity manages Veracity Learning’s application security. The AWS cloud infrastructure that hosts the Veracity Learning SaaS product and the MongoDB Atlas cloud infrastructure that hosts the databases are both conformant with many security frameworks. 

In order to protect against unforeseen service outages, data that is lost or stolen, and other potential security incidents, Veracity carries Errors & Omissions and Cyber Liability insurance. The E&O coverage applies to professional services and the Cyber Liability applies to a wrongful act or data breach occurring under a data privacy or network security incident.

Veracity’s security artifacts can be provided to customers upon request.


    • Related Articles

    • What Are the Reasons to Use More Than One LRS Instance?

      The Veracity Learning system features a multi-instance architecture, which allows users to create more than one LRS database instance. Users can create up to a certain number of separate LRS instances depending on their account tier. Each LRS ...

    • What Are the Different Plans and Licenses Offered?

      Whether you're just starting out with xAPI and have a need for a free LRS, or if you’re a seasoned organization ready to move to a production environment, Veracity Learning has you covered with a variety of different options to choose from. ...

    • What Versions of SCORM are Supported by Veracity Launch?

      The following versions of SCORM are supported by Veracity's SCORM content player: SCORM 1.2 SCORM 2004, 4th Ed. (Note: no sequencing & navigation; only the run-time data model is supported)

    • What is xAPI and What is an LRS?

      The Experience API (xAPI) is a specification that allows systems to store and retrieve data from a wide range of learning experiences. The specification is comprised of two main components: The data model - The xAPI data model is a JavaScript Object ...

    • What is Veracity Learning?

      Veracity Learning is a software platform for recording and reporting on learning experience and performance data using the Experience API (xAPI) specification. The core capabilities are described below. Veracity Learning is… A Learning Record Store ...