Skip to content
TruthVouch Docs

Legal

TruthVouch is a B2B platform for AI governance and verification. These documents define our legal obligations and your rights.

Primary Documents

Compliance Documents

Key Terms Summary

Data Ownership

  • You own all data you provide (knowledge bases, AI outputs, policies)
  • TruthVouch may use aggregated, anonymized data to improve services
  • Data is not shared with other customers

Liability

  • TruthVouch provides services “as-is” with no warranty
  • Liability capped at 12 months of your fees
  • No liability for indirect, consequential, or punitive damages

Security & Compliance

  • SOC 2 Type II certified
  • GDPR, HIPAA, ISO 27001 compliant
  • End-to-end encryption for sensitive data
  • Regular penetration testing

Service Availability

  • Uptime SLA: 99.9%
  • 15-minute incident response (critical issues)
  • Planned maintenance window: Sundays 2-4 AM UTC

Can I use TruthVouch for my regulated industry? Yes. We support healthcare (HIPAA), financial (SOC 2), and EU companies (GDPR). Data can be hosted in-region.

Who owns the content I verify? You do. We access it only to perform verification and never share it with others or use it for training.

What happens if TruthVouch goes down? We maintain 99.9% uptime SLA. If we breach it, you’re eligible for service credits. For outages exceeding 24 hours, you can terminate without penalty.

Can I audit your security? Yes. We provide SOC 2 Type II reports, penetration test summaries, and support custom audits for Enterprise customers.

Is TruthVouch GDPR compliant? Yes. We process data as a data processor on your behalf per our DPA. EU data is stored in EU data centers.

Updates

Legal documents are updated periodically. We’ll notify customers of material changes via email at least 30 days in advance. Continued use constitutes acceptance.