Platform
How It WorksFeaturesPricingResultsvs Credit RepairChangelog
Tools
Dispute LettersLetter LibraryCredit Report ErrorsApply for Access
Dispute Guides
How to Dispute a Credit ReportHow to Write a Dispute LetterFCRA § 611 ExplainedMedical CollectionsRemove a Charge-OffRound 2 Dispute Strategy→ All Dispute Guides
FCRA & Your Rights
Your Rights Under the FCRAFCRA § 609 — File AccessFCRA § 611 — Dispute RightsThe 30-Day Investigation RuleStatute of Limitations on DebtFDCPA Debt Collector Rules→ All Rights Guides
Credit Score Help
How Credit Scores Are CalculatedWhy Your Score DroppedBuild Credit From ZeroCredit Utilization ExplainedHow to Raise Your Score FastHard vs Soft Inquiries→ All Score Guides
Blog
All GuidesDispute ProcessCredit Report ErrorsCredit ScoreHow to Read Your Credit ReportGet Your Free Credit Report
Who It's For
For ConsumersFor OperatorsFor ProfessionalsFor Creators
Programs
Creator ProgramPartner ProgramApply for Access
Your Rights
FCRA RightsFCRA ComplianceSecurityLLMs.txt
Dispute Tools
Dispute LettersLetter LibraryCredit Report Errors
Blog & Guides
All GuidesDispute ProcessCredit Report ErrorsCredit ScoreFAQNewsletter
About
About ScoreVeraPressTestimonialsResultsChangelog
Connect
ContactNewsletterPartnersPartner Hub
Legal
Privacy PolicyTerms of ServiceDisclaimer
Security

Your credit data is the most sensitive information you'll ever upload.

We treat it accordingly. Here's exactly how ScoreVera protects your data — what we encrypt, what we don't store, what we never sell, and how you stay in control.

TLS in transit
AES-256 at rest
No third-party data sales
Delete anytime
SOC 2-aligned infrastructure
Encryption

Data encrypted in transit and at rest

All data transmitted between your browser and ScoreVera's servers is encrypted using TLS (Transport Layer Security), the same standard used by banks and financial institutions. Data stored on our servers — including your credit report information, account details, and generated letters — is encrypted at rest using AES-256 encryption. AES-256 is the encryption standard used by the U.S. government for classified information. Your data is unreadable to anyone who does not hold the decryption keys, which are themselves protected and rotated regularly.

Credit Report Handling

Uploaded reports are processed, not stored long-term

When you upload a credit report PDF, it is processed to extract the information needed to identify disputable items and pre-fill your dispute letters. The raw PDF is not retained indefinitely. Extracted data (account names, reported statuses, balances, dates) is stored within your account so you can manage disputes over time, but the original uploaded document is removed after processing is complete. If you choose to delete your report data from your account settings, that extracted data is permanently removed from our systems. We do not retain copies of your credit reports beyond what is necessary to operate your active disputes.

No Data Sales

Your data is never sold or shared with third parties

ScoreVera does not sell, rent, license, or otherwise transfer your personal information, credit report data, or account data to any third party for any purpose. We do not share your data with advertisers, data brokers, marketing platforms, or analytics firms. The only third parties who access your data are our infrastructure providers — cloud hosting and payment processors — who are contractually prohibited from using your data for any purpose other than providing services to ScoreVera. We do not use your credit report data for aggregate analytics or product research. Your financial information is not a product we sell.

Access Controls

Account-level isolation — your data is yours alone

ScoreVera enforces strict account-level data isolation. Each user account is scoped to its own data partition, and there are no mechanisms by which one user can access another user's credit report data, letters, or dispute records. Our internal access controls follow the principle of least privilege — team members only have access to the data they need to perform their specific role, and internal access to user data is logged and audited. Credit report data is never accessible to customer-facing tools or external integrations unless you explicitly export or share it yourself.

Infrastructure

Hosted on enterprise-grade cloud infrastructure

ScoreVera is hosted on a major U.S.-based cloud provider with physical data centers that maintain SOC 2 Type II certifications, ISO 27001 compliance, and 24/7 physical security. Our infrastructure includes redundant storage, automated backups, and geographic redundancy to ensure availability and data durability. We follow SOC 2-aligned security practices across our own operations, including security review processes for new code, dependency management, and routine vulnerability assessments. Our hosting environment is isolated from other tenants through virtual private cloud architecture, providing an additional layer of network-level separation.

Your Control

Delete your data at any time, from your account settings

You have full control over your data within ScoreVera. You can delete individual dispute records, remove uploaded credit report data, or close your account entirely — all from your account settings without contacting support. When you delete data, it is removed immediately from your active account and purged from our systems within 30 days, including backups. There is no retention of deleted user data beyond what is required by law. Account deletion removes all your personal information, credit report data, and generated letters permanently. If you close your account and change your mind within 30 days, contact us at security@scorevera.com to request a data recovery.

What We Don't Do

A clear list of things ScoreVera will never do with your data

Sell your personal information or credit report data to any third party
Share your data with advertisers, data brokers, or credit bureaus for marketing
Use your credit report data for aggregate product analytics or AI training
Retain uploaded credit report PDFs after processing is complete
Keep your data after you delete it or close your account (beyond 30-day purge window)
Access your account data except for support purposes when you request it
Submit disputes or take any action on your behalf without your explicit action
Security Contact

Questions or concerns about security?

If you have discovered a potential security vulnerability, have a question about how we handle your data, or want to request deletion of your information, contact our security team directly.

security@scorevera.com

We take security reports seriously and will respond within 48 hours. For responsible disclosure of security vulnerabilities, please include as much detail as possible about the nature of the issue and the steps to reproduce it.

Your data. Your disputes. Your control.

ScoreVera is built on the principle that your financial information belongs to you — not us. Start disputing for free.

Get Started Free