Thirty Seven Inc. ("Company," "we," "us," or "our") operates the VARI platform, including VARI-LEGAL, VARI-INSURE, VARI-MED, VARI-NERC, and VARI-HIRE (collectively, the "Service"). This Privacy Policy describes how we collect, use, disclose, and protect information when you access or use our Service.
By using the Service, you consent to the practices described in this Privacy Policy. If you do not agree, please do not use the Service.
Account Information: Name, email address, organization name, and professional role when you register or contact us.
Verification Input Data: Legal citations, insurance documents, medical determinations, compliance data, and other content you submit for verification ("Customer Data").
Communications: Information you provide when contacting us through forms, email, or other channels.
Usage Data: IP address, browser type, operating system, referring URLs, pages viewed, access times, and interactions with the Service.
Device Information: Device identifiers, screen resolution, and connection type.
Analytics: We use Google Analytics and similar tools to understand Service usage patterns. These tools may use cookies and similar technologies.
We use collected information to: provide, maintain, and improve the Service; process verification requests and generate reports; respond to inquiries and provide support; monitor usage patterns and system performance; protect against unauthorized access and misuse; comply with legal obligations; and communicate updates about the Service.
Customer Data submitted for verification is processed solely for the purpose of providing the verification service you requested. We do not use Customer Data to train AI models or for purposes unrelated to the Service.
Verification reports and associated Customer Data are retained for a reasonable period to enable report retrieval and audit trail integrity. You may request deletion of your Customer Data by contacting us at [email protected].
To provide the Service, Customer Data may be processed by third-party AI model providers (such as Anthropic) and database providers (such as CourtListener). These processors are bound by their own privacy and data handling policies. We select processors that maintain appropriate security and privacy practices.
We do not sell, rent, or trade your personal information. We may share information with: service providers who assist in operating the Service (subject to confidentiality obligations); as required by law, regulation, legal process, or governmental request; to protect the rights, safety, or property of the Company, our users, or the public; and in connection with a merger, acquisition, or sale of assets (with notice to affected users).
We implement reasonable administrative, technical, and physical safeguards to protect information. These include encryption in transit (TLS/SSL), access controls, and secure cloud infrastructure (Google Cloud Platform). However, no method of transmission or storage is completely secure. We cannot guarantee absolute security.
The Service is not designed to preserve attorney-client privilege, physician-patient confidentiality, HIPAA-protected health information, or other legally privileged communications. You are solely responsible for determining whether submission of any information to the Service is appropriate given applicable privilege and confidentiality obligations. The Company accepts no liability for any waiver or loss of privilege resulting from use of the Service.
The Service may use cookies and similar tracking technologies for analytics and functionality. You can control cookies through your browser settings. Disabling certain cookies may limit Service functionality.
Depending on your jurisdiction, you may have the right to: access the personal information we hold about you; request correction of inaccurate information; request deletion of your information; object to or restrict certain processing; and receive your data in a portable format. To exercise these rights, contact us at [email protected].
The Service is not directed to individuals under the age of 18. We do not knowingly collect information from children. If we become aware that we have collected information from a child, we will take steps to delete it promptly.
We may update this Privacy Policy from time to time. We will notify you of material changes by posting the updated policy on this page with a revised "Last Updated" date. Your continued use of the Service after any changes constitutes acceptance of the revised policy.
For questions about this Privacy Policy or to exercise your data rights:
Thirty Seven Inc.
Somerset, Massachusetts
Email: [email protected]
Web: thirtyseveninc.co