Privacy Policy
Effective Date: February 10, 2026 | Last Updated: February 10, 2026
🔒 Privacy Commitment: We respect your privacy and are committed to protecting your personal information. This policy explains what data we collect, how we use it, and your rights.
1. Information We Collect
1.1 Information You Provide
When you use StoryLine VA, you provide:
- Claim Information: Details about your disability claim, service connection, symptoms, and treatment history
- Email Address: Only if you opt in to receive updates (optional)
- Feedback: Ratings, comments, and suggestions you choose to provide
1.2 Automatically Collected Information
We automatically collect:
- Usage Data: Which stages you complete, time spent, completion rates
- Technical Data: IP address (for rate limiting only), browser type, device type
- Session Data: Anonymous session IDs to track workflow progress
1.3 Information We DO NOT Collect
- Your name, SSN, or VA claim number
- Exact location or GPS coordinates
- Payment information (service is currently free)
- Social media profiles or contacts
2. How We Use Your Information
| Generate Statements |
Your claim information is sent to an AI service (Anthropic Claude) to generate your personalized statement |
| Improve the Service |
Usage analytics help us understand where users struggle and what features to add |
| Rate Limiting |
IP addresses are used to prevent abuse and ensure fair access |
| Optional Updates |
If you opt in, we'll email you about new features or the paid version launch |
| Security |
We monitor for suspicious activity and potential security threats |
3. Data Sharing and Third Parties
3.1 AI Processing (Anthropic Claude)
Your claim information is sent to Anthropic's Claude AI to generate your statement. Per Anthropic's policies:
- Your data is NOT used to train AI models
- Data is encrypted in transit (HTTPS)
- Anthropic retains data for 30 days for security/abuse prevention, then deletes it
- Learn more: https://www.anthropic.com/privacy
3.2 Infrastructure Providers
- Cloudflare: Hosts our API and provides security, rate limiting, and analytics storage
- Netlify: Hosts the website frontend
3.3 What We DON'T Do
- ❌ We do NOT sell your data to third parties
- ❌ We do NOT share your claim details with the VA or anyone else
- ❌ We do NOT use your data for marketing to you (unless you opt in)
- ❌ We do NOT share data with advertisers
4. Data Retention
| Claim Information |
Sent to AI provider, retained by them for 30 days, then deleted. We do not store your claim details. |
| Analytics Data |
Kept for 90 days to analyze usage patterns, then deleted |
| Feedback & Emails |
Kept until you request deletion or until service sunset |
| Generated Statements |
Downloaded to your device only. We do not keep copies. |
5. Data Security
We implement industry-standard security measures:
- Encryption: All data is transmitted over HTTPS (encrypted connections)
- Access Control: Strict access limits to backend systems
- Rate Limiting: Prevents abuse and automated attacks
- Input Sanitization: All user input is sanitized to prevent injection attacks
- No Long-Term Storage: We don't store claim details on our servers
Security Note: While we implement strong security measures, no system is 100% secure. You should never include your SSN, VA claim number, or other highly sensitive identifiers in the tool.
6. Your Rights and Choices
6.1 Access and Deletion
You have the right to:
- Request a copy of any data we have about you (email us)
- Request deletion of your email and feedback (email us)
- Opt out of analytics (this would require not using the service)
6.2 Email Opt-Out
If you opted in to receive updates, you can opt out at any time by:
6.3 California Privacy Rights (CCPA)
If you are a California resident, you have additional rights under the California Consumer Privacy Act, including the right to know what data we collect, request deletion, and opt out of data sales (we don't sell data).
7. Cookies and Tracking
StoryLine VA does NOT use cookies or tracking pixels. We use session storage (temporary, in-browser) to maintain your progress through the workflow, but this data is cleared when you close the browser tab.
8. Children's Privacy
This Service is intended for veterans (18+) and we do not knowingly collect information from anyone under 18. If we learn that we have collected information from someone under 18, we will delete it immediately.
9. Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be communicated through:
- A notice on the Service homepage
- Email (if you opted in)
- Updating the "Last Updated" date at the top of this page
10. International Users
This Service is based in the United States. If you use the Service from outside the U.S., your data may be transferred to and processed in the United States. By using the Service, you consent to this transfer.
11. Do Not Track Signals
Some browsers support "Do Not Track" signals. Because there is no industry standard for DNT, we do not currently respond to DNT signals. However, we already minimize tracking to what's necessary for the Service to function.
12. Contact Us
If you have questions about this Privacy Policy or want to exercise your rights, contact us:
- Email: support@storylineva.com
- Response Time: We aim to respond within 5 business days
13. Summary (TL;DR)
The short version:
- We collect only what's needed to generate your statement
- Your claim details go to Anthropic (AI provider), kept 30 days, then deleted
- We track anonymous usage stats to improve the tool
- We don't sell your data or spam you