Privacy Policy

Last updated: January 8, 2025

Overview

CEvident™ ("we", "our", or "us") is committed to protecting your privacy. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our compliance evidence and verification platform.

CEvident is not a credentialing authority. We provide a system of record for compliance evidence tracking and deterministic compliance calculations based on published requirements and user-provided evidence.

Information We Collect

Account Information

We collect information you provide when creating an account, including name, email address, and organization details.

Compliance Data

We store compliance-related data you upload, including licenses, permits, continuing education activities, and evidence files. This data is used solely for compliance tracking and verification purposes.

Usage Data

We collect usage data for billing, rate limiting, and service improvement. This includes compliance runs, audit pack generations, and feature usage.

Audit Logs

All actions within the system are logged in an append-only audit trail for security, compliance, and debugging purposes.

How We Use Your Information
  • To provide compliance tracking and verification services
  • To generate audit packs and compliance reports
  • To process billing and manage your account
  • To improve our services and develop new features
  • To comply with legal obligations and enforce our terms
Data Sharing and Disclosure

We do not sell your personal information. We may share your information only in the following circumstances:

  • With your explicit consent
  • To comply with legal obligations or court orders
  • To protect our rights, privacy, safety, or property
  • With service providers who assist in operating our platform (under strict confidentiality agreements)
Data Retention

We retain your data according to our retention policies, which may be configured per organization. Data subject to legal holds will be retained beyond normal retention periods.

For more information about data retention and deletion, see our Data Management page.

Your Rights

You have the right to:

  • Access your personal data
  • Request correction of inaccurate data
  • Request deletion of your data (subject to legal holds and retention policies)
  • Export your data in a structured format
  • Object to processing of your data

To exercise these rights, contact us or use the Data Subject Access Request (DSAR) features in the admin panel.

Security

We implement appropriate technical and organizational measures to protect your data, including encryption, access controls, and regular security assessments.

Changes to This Policy

We may update this Privacy Policy from time to time. We will notify you of any material changes by posting the new policy on this page and updating the "Last updated" date.

Contact Us

If you have questions about this Privacy Policy, please contact us through the support features in the application.

Trademarks

CEvident is a trademark. All other marks are the property of their respective owners.