Privacy Policy
This policy explains how VeriSpec handles data when you use our API readiness scanner, reports, exports, billing, and related services.
Last updated: June 16, 2026
What we collect
We collect the account information you provide, such as your name, email address, organization, and authentication details.
When you run a scan, we process the API specs, documentation URLs, uploaded files, generated findings, reports, and related metadata needed to deliver the service.
With your consent, we collect product analytics through tools such as Mixpanel and PostHog, including page views, onboarding actions, scan/report usage, device and browser data, and related event metadata. We also collect logs and support communications through tools such as Intercom so we can operate, secure, and improve VeriSpec.
How we use data
We use your data to authenticate users, run readiness scans, generate reports and exports, provide billing and support, prevent abuse, and improve product quality.
Uploaded specs and scan artifacts may be processed by infrastructure providers and AI providers when a feature requires summarization, remediation guidance, or report generation.
Sharing
We do not sell personal information. We share data with service providers that help us host the app, store artifacts, process payments, send email, analyze product usage, monitor errors, provide customer support, and provide AI-assisted features.
We may disclose information if required by law, to protect VeriSpec or users, or in connection with a merger, acquisition, financing, or sale of assets.
Retention and security
We retain account, billing, scan, and report data for as long as needed to provide the service, meet legal obligations, resolve disputes, and enforce agreements.
We use technical and organizational safeguards designed to protect data, but no internet service can guarantee absolute security.
Your choices
You can request access, correction, export, or deletion of personal information by contacting us. Some data may need to be retained where required for security, legal, billing, or audit purposes.
You can decline non-essential product analytics from the analytics preference banner.
You can opt out of non-essential marketing emails through the unsubscribe link in those messages.