Primary data region
PostgreSQL database, authentication and file storage for customer portal data run on Supabase in ap-southeast-2 (Sydney, Australia). This is where register rows, workspace settings and evidence vault files live.
A plain-English overview of how Veridian IMS stores portal data, who can access it, and how we respond when you need help. Veridian supports controlled records and audit workflows — it does not guarantee certification outcomes.
Veridian IMS is a cloud SaaS platform. Your portal registers, settings and uploaded evidence are stored in managed infrastructure — not on a single office server.
PostgreSQL database, authentication and file storage for customer portal data run on Supabase in ap-southeast-2 (Sydney, Australia). This is where register rows, workspace settings and evidence vault files live.
The marketing site, dashboard and API routes are hosted on Vercel (global edge network). Application logic runs in serverless functions; persistent customer content stays in Supabase.
Card payments and billing are handled by Stripe. Veridian stores subscription status and plan identifiers — not full card numbers.
Service emails (welcome, trial reminders, account notices) are sent through transactional email providers such as Resend, under contractual safeguards.
Access is authenticated and scoped so one customer account cannot read another's records.
PostgreSQL data is protected by automated backups managed by Supabase, including point-in-time recovery capabilities on the database platform. We monitor service health and rely on our providers' redundancy for infrastructure failures.
We recommend exporting critical audit evidence and registers periodically using built-in Word/Excel exports and the evidence vault — your operational backup in addition to platform backups.
If you suspect unauthorised access, data loss or a security issue affecting your account, contact hello@veridianims.com immediately with as much detail as you can (account email, time observed, screenshots if safe to share).
We will investigate, contain and remediate confirmed issues, and notify affected customers where appropriate. We review incidents to improve controls and documentation.
No online service is completely risk-free. Veridian supports controlled records and audit workflows — we do not guarantee that misuse, misconfiguration or third-party outages will never occur.
Last updated: July 2026 · Questions: hello@veridianims.com
Start a 7-day demo with sample data, or book a walkthrough with our team.