Security is our core product.

Security Overview

Veritag maintains a comprehensive security program designed to ensure the confidentiality, integrity, and availability of our authentication services. We employ a defense-in-depth strategy, layering physical, network, and application-level security controls.

Data Protection

Encryption in Transit and at Rest

All data sent to or from Veritag is encrypted in transit using TLS 1.3. Data at rest is encrypted using AES-256 with industry-standard key management practices.

Customer Anonymization

We practice data minimization. Verification scans do not collect PII (Personally Identifiable Information) from end-consumers unless explicitly configured by the brand owner for warranty purposes.

Infrastructure Security

Veritag services are hosted on Tier-1 Cloud Providers (AWS/Google Cloud) within highly secure, SOC 2 Type II certified data centers. Our infrastructure is managed as code (IaC) and undergoes regular automated vulnerability scanning.

• Distributed Denial of Service (DDoS) mitigation.
• Web Application Firewalls (WAF) at every entry point.
• Isolated production and staging environments.

Compliance & Certifications

We are committed to meeting global standards for data security and privacy.

Hardware Integrity

Our physical tags are manufactured in Secure-Certified Facilities. Each batch undergoes a cryptographic "birth ceremony" where unique keys are injected into chips and recorded on our private blockchain, ensuring the hardware itself cannot be spoofed or duplicated.

Vulnerability Disclosure

We welcome reports from security researchers. If you believe you have found a security vulnerability in Veritag, please contact us at security@veritag.com. We ask that you do not disclose the issue publicly until we have had a chance to remediate it.