Home / Compliance

Compliance & Security Framework

At VetoBill, we operate with a “Security First” mindset. While we are a technology platform and not a healthcare provider, we adhere to strict data protection standards inspired by HIPAA, GDPR, and SOC 2 frameworks to ensure your medical billing data is handled with the highest level of care.

πŸ“Š Our Compliance Status

πŸ₯

HIPAA Awareness

Aligned

VetoBill is not a Covered Entity under HIPAA. However, we implement HIPAA-aligned safeguards (encryption, access controls, audit logs) to protect Protected Health Information (PHI) found on bills.

πŸ‡ͺπŸ‡Ί

GDPR Alignment

Compliant

Headquartered in Switzerland, we strictly adhere to GDPR principles for data minimization, user consent, right to deletion, and cross-border data transfer protections.

πŸ”’

Data Encryption

Active

All data is encrypted in transit (TLS 1.3) and at rest (AES-256). We use enterprise-grade key management systems to secure your documents.

πŸ—‘οΈ

Data Retention

Auto-Delete

We practice data minimization. Uploaded bills are automatically deleted from our servers 24 hours after analysis is complete unless you choose to save them.

πŸ›‘οΈ Technical Security Measures

We employ the following controls to protect your data:

  • βœ“ AES-256 Encryption: Bank-grade encryption for all stored documents.
  • βœ“ TLS 1.3: Secure transmission of all data between your browser and our servers.
  • βœ“ Access Controls: Strict role-based access limits for internal staff.
  • βœ“ Audit Logging: Comprehensive logs of all data access and processing activities.
  • βœ“ Secure Infrastructure: Hosted on SOC 2 Type II compliant cloud providers (Supabase/Vercel).
  • βœ“ No Data Selling: Contractual prohibition on selling or renting user data.
βš–οΈ Important Legal Notice

VetoBill is a software technology platform, not a healthcare provider, health plan, or clearinghouse. We do not provide medical advice, legal advice, or insurance services. Our tools are designed to assist patients in understanding their bills. Users are responsible for ensuring they have the right to upload any documents they submit. For specific legal or medical concerns, please consult a qualified professional.

Questions about our compliance or security?

Email: hello@vetobill.com
Address: Ergolzstrasse 4414, 4414 FΓΌllinsdorf, Switzerland