SuperVector Logo
VeritasLab
Contact

Compliance & Security

Veritas Lab is built with security and compliance at its core, ensuring your sensitive documents remain protected while meeting regulatory requirements.

Compliance Overview

Veritas Lab is designed to meet the highest standards of security and compliance, with a focus on Canadian data sovereignty and industry-specific regulations.

Canadian Data Sovereignty
All data remains within Canadian borders at all times, hosted in AWS Canada (ca-central-1) region.
Enterprise-Grade Security
End-to-end encryption, secure access controls, and comprehensive audit trails protect your sensitive documents.
Regulatory Compliance
Designed to meet requirements for HIPAA, SOC 2, ISO 27001, and other regulatory frameworks.
AWS HIPAA-Compliant Components
The following AWS services used in Veritas Lab are eligible for HIPAA compliance under the AWS Business Associate Addendum (BAA). All services are hosted in the Canada (ca-central-1) region.
AWS ServiceHIPAA EligibleUsage in Veritas Lab
Amazon S3
Yes
Secure document storage with encryption
AWS Lambda
Yes
Stateless processing for OCR/NLP and inference
Amazon API Gateway
Yes
Secure REST API entry point
Amazon DynamoDB
Yes
Structured result storage for extracted metadata
Amazon Textract
Yes
OCR for PDFs, scanned documents, image extraction
AWS IAM
Yes
Secure identity and access control
Amazon ECR
Yes
Container image repository for AI models
Amazon CloudWatch
Yes
Logging, alerting, audit trails
AWS CloudFormation
Yes
Infrastructure as code (auditable deployment)

All components are deployed with encryption at rest and in transit, scoped IAM roles, and regional data residency.

Canadian Data Residency

Veritas Lab is committed to maintaining Canadian data sovereignty, ensuring that your sensitive documents never leave Canadian borders.

Data Sovereignty Guarantee

  • All infrastructure is deployed exclusively in the AWS Canada (ca-central-1) region.

  • Data never leaves Canadian jurisdiction at any point during processing.

  • Region-restricted bucket policies prevent data transfer to other AWS regions.

  • All backups and replicas remain within Canadian borders.

Why Canadian Data Residency Matters

Canadian organizations handling sensitive information are often subject to regulations requiring data to remain within Canadian borders. This includes:

  • • Healthcare organizations subject to provincial health information laws
  • • Financial institutions regulated by OSFI
  • • Public sector organizations subject to PIPEDA
  • • Legal firms handling confidential client information
  • • Organizations with contractual data residency requirements

Ready to learn more about our compliance measures?

Contact our team to discuss your specific compliance requirements and how Veritas Lab can help you meet them.

Contact UsRequest Demo