Trust Center


Our commitment to your privacy.

At Veritas, we are committed to respecting your information and providing transparency around how we use it, in accordance with applicable privacy laws. We protect your personal information and enable you to make informed decisions for your business and your customers.

Veritas privacy policies and practices.

Data privacy is part of the Veritas Code of Conduct. Everyone at Veritas—regardless of their role, team, or location—is required to complete an annual data privacy training, conducted by the Veritas Privacy Office.

Veritas operates as a data processor with no control over the type, substance, or format of encrypted customer data. Veritas does not require access to or use customer data at any point to provide services, other than by machine-read, electronic methods. Veritas customer data will always remain the property of the customer.

Veritas has a dedicated function to address security and privacy matters, along with established processes for individuals to exercise their data protection rights. Veritas uses state-of-the-art methods to ensure secure processing and to secure customer data. We review our data-breach incident response plan annually and maintain a suite of privacy policies that govern how we handle customer data.

All Veritas information subprocessors agree to our data processing terms, which include the agreement to implement and maintain appropriate technical and organizational measures to protect data against unauthorized or unlawful processing and against accidental loss, destruction, damage, theft, alteration, or disclosure that aligns with data protection language and Veritas provider security requirements.

Where information is under Veritas control, we will notify our customers without undue delay if Veritas becomes aware of confirmed accidental, unauthorized, or unlawful destruction, loss, alteration, or disclosure of, or access to, customers’ personal data. We will take such reasonable steps as may be required to investigate and remedy the data breach as soon as possible. Veritas customers, as data controllers, are responsible for communicating a personal data breach to their respective customers.

Customers have made personal data available to Veritas. We agree not to retain, use, or disclose any personal data of the customers for any purpose, other than the specific purpose of performing the services for the business purposes, as defined by General Data Protection Regulation (EU) 2016/679 (GDPR) and California Consumer Privacy Act of 2018; and will not sell personal data.

Learn more about how we protect our customers’ personal data and the full terms and conditions on Privacy | Veritas.

As part of our commitment to protecting customer data, Veritas follows a strict policy when responding to requests from government agencies to access customer data. The request must comply with all applicable laws in the relevant jurisdiction. Veritas will adhere to the legal obligation to the extent required by the law. Veritas will take all reasonable efforts to inform the customer of the request unless Veritas is prohibited from doing so by law. As a responsible global company, Veritas respects the rights of its customers and adheres to obligations placed on it by the law.

The customer, as data controller, is in the best position to determine the validity of a request. Veritas, as data processor, does not interface directly with the data subject. Should a data subject of the customer ever contact Veritas directly about its data, Veritas will forward the communication to the customer without undue delay for determination as to the identity of the data subject and handling the request.