Privacy Policy

Last Updated: October 9, 2025

1. Information We Collect

Information You Provide

When you use our service, you voluntarily provide us with the following information:

Personal Information: Name, email address, VA file number (optional)
Military Service Information: Branch of service, service dates, MOS (Military Occupational Specialty)
Medical Information: Disability condition, symptoms, medical providers, hospitalization history
Service Connection Details: Events, exposures, and circumstances related to your claim
Payment Information: Processed securely through Stripe (we do not store credit card information)

Automatically Collected Information

Usage Data: Pages visited, time spent, documents selected
Technical Data: IP address, browser type, device information
Cookies: Session cookies for authentication and payment processing

2. How We Use Your Information

We use your information exclusively for the following purposes:

Document Generation: Creating personalized VA disability claim documents
Email Delivery: Sending your completed documents to your email address
Payment Processing: Completing your transaction through Stripe
Service Improvement: Analyzing usage patterns to enhance our service
Customer Support: Responding to your inquiries and support requests
Legal Compliance: Meeting legal and regulatory requirements

We will NEVER:

Sell your personal information to third parties
Share your medical information without your consent
Use your data for marketing purposes without permission
Disclose your information to the VA or other government agencies

3. Data Security & Protection

Your security is our top priority. We implement multiple layers of protection:

Security Measures Implemented

Input Sanitization

XSS Protection

Email Validation

Data Encryption

Secure Payment Processing

Input Validation: All user input is rigorously validated and sanitized to prevent injection attacks
XSS Protection: HTML and JavaScript sanitization using industry-standard bleach library
Length Limits: Enforced maximum character limits on all input fields
Email Verification: Strict email format validation to prevent abuse
HTTPS Encryption: All data transmitted over secure, encrypted connections
Secure Payment Processing: PCI-compliant payment processing through Stripe
Access Controls: Limited employee access to personal information
Regular Security Audits: Ongoing security assessments and updates

4. Data Retention

We retain your information only as long as necessary:

Session Data: Cleared immediately after document generation and delivery
Payment Records: Retained for 7 years for tax and legal compliance
Email Logs: Retained for 90 days for delivery verification
Generated Documents: NOT stored on our servers after email delivery

5. Third-Party Services

We use the following trusted third-party services:

Stripe: Payment processing (subject to Stripe's Privacy Policy)
SendGrid: Email delivery service (subject to SendGrid's Privacy Policy)
OpenAI: AI-powered document generation (subject to OpenAI's Privacy Policy)
Replit: Application hosting and infrastructure

These services may have access to your information only to perform tasks on our behalf and are obligated to protect your data.

6. Your Privacy Rights

You have the following rights regarding your personal information:

Access: Request a copy of your personal data
Correction: Request correction of inaccurate information
Deletion: Request deletion of your personal data (subject to legal requirements)
Opt-Out: Unsubscribe from marketing communications
Data Portability: Request your data in a portable format

To exercise these rights, contact us at: https://www.missionvetai.com/support

7. Cookies and Tracking

We use essential cookies for:

Session management and authentication
Payment processing through Stripe
Referral tracking for analytics

You can disable cookies in your browser settings, but this may affect service functionality.

8. Children's Privacy

Our service is not intended for individuals under 18 years of age. We do not knowingly collect personal information from children. If you believe we have collected information from a child, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy periodically. We will notify users of significant changes by:

Updating the "Last Updated" date at the top of this policy
Posting a notice on our website
Sending an email notification (for material changes)

10. Contact Us

If you have questions, concerns, or requests regarding this Privacy Policy or your personal information, please contact us:

MissionVet AI
Support: https://www.missionvetai.com/support
Website: www.missionvetai.com

11. HIPAA Compliance Notice

Important: MissionVet AI is not a covered entity under HIPAA (Health Insurance Portability and Accountability Act). The medical information you provide is used solely for document generation and is not maintained in a protected health record system. We encourage you to review documents carefully before submitting to the VA.