Privacy Policy

Overview

This page outlines the privacy practices of the VeritasChain Standards Organization (VSO).

1. Data We Collect

VSO may collect the following types of data when you use our services:

2. Purpose of Use

The data collected is used for the following purposes:

• Stable Operation of VCP Explorer / API / SDK

  To ensure reliable and efficient operation of our services, monitor system health, and optimize performance.

• Unauthorized Access Detection & Security Enhancement

  To detect and prevent fraudulent activities, unauthorized access attempts, and other security threats.

• Statistical Analysis for Protocol Improvement

  To analyze usage patterns and improve the VeritasChain Protocol and related services.

• VC-Certified Program Administration

  To manage the certification process with minimal necessary information.

• Regulatory Compliance & Audit Log Retention

  To maintain audit logs required for compliance with regulations such as MiFID II, EU AI Act, and other applicable laws.

3. Cookies & Analytics

Google Analytics 4 (GA4)

Our website uses Google Analytics 4 (GA4) to collect anonymized usage statistics. GA4 uses cookies to track user interactions and generate reports about website traffic and usage patterns.

Managing Cookie Preferences

You can control and reject cookies through your browser settings. Most browsers allow you to:

• View what cookies are stored on your device
• Delete existing cookies
• Block all or specific cookies from being set
• Set preferences for specific websites

Third-Party Analytics Services

In addition to GA4, we may use other third-party analytics services to improve our services. These services may set their own cookies and collect similar data. We ensure that all third-party services we use comply with applicable privacy regulations.

4. Third-Party Sharing

When We May Share Data

Your data may be shared only in the following limited circumstances:

• Legal Requirements

  When required by law, court order, or regulatory authority (e.g., law enforcement requests, regulatory investigations).

• VC-Certified Audit Purposes

  Minimal anonymized statistical data may be used for audit purposes in the VC-Certified program. This data does not contain personally identifiable information.

5. EU GDPR

For users residing in the European Union (EU) or European Economic Area (EEA), the following additional information applies under the General Data Protection Regulation (GDPR):

Data Retention Period

We retain your personal data only for the minimum period necessary to fulfill the purposes outlined in this policy, typically up to 24 months, unless a longer retention period is required by law (e.g., regulatory compliance requirements).

Your Rights Under GDPR

As an EU resident, you have the following rights regarding your personal data:

Legal Basis for Processing

Under Article 6 of the GDPR, we process your personal data based on our legitimate interests in operating, improving, and securing our services, while ensuring that such processing does not override your fundamental rights and freedoms. For certain processing activities, we may rely on your consent, contractual necessity, or legal obligations.

6. Security

We implement robust security measures to protect your personal data from unauthorized access, alteration, disclosure, or destruction.

7. Changes to This Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, technology, legal requirements, or other factors.

8. Contact Information

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact us: