Security & Data Handling
Veriscopic is designed with security, integrity, and auditability as first-class concerns. Controls are applied to support governed decision-making and external scrutiny.
This page describes how security supports evidence integrity. It does not constitute a certification, accreditation, or regulatory assurance.
What we do — and what we don’t
| We do | We don’t |
|---|---|
| Apply security controls to protect access, integrity, and availability | Claim certification, accreditation, or regulatory approval |
| Preserve governance records in a tamper-resistant, verifiable form | Assess legal compliance or regulatory sufficiency |
| Restrict access by role, scope, and declared authority | Use customer data for advertising or AI training |
| Support independent verification of evidence integrity | Make claims about the quality or outcomes of decisions |
Platform security
Veriscopic applies modern security practices across infrastructure, application logic, and data handling. Controls are designed to reduce unauthorised access, preserve integrity, and support audit and insurer review.
Authentication and access control
User authentication uses industry-standard mechanisms, including third-party identity providers where appropriate. Access to organisational data is restricted by role, scope, and declared authority.
Data protection and use
Personal and organisational data is processed only as required to operate the platform and support governance workflows. Data is not sold, shared for advertising purposes, or used to train AI models.
Evidence integrity
Governance records and evidence artefacts are designed to be tamper-resistant and verifiable. Where applicable, timestamps, versioning, and cryptographic techniques are used to preserve integrity and enable independent verification.
Integrity guarantees are defined by the Veriscopic Evidence Standard (VES), not by discretionary platform claims.
Ongoing review
Security is treated as an ongoing process. Controls and practices are reviewed as the platform evolves and as regulatory, insurer, and industry expectations change.