LOADING
Claim Recon ("we," "us," "our") operates claimrecon.com, an educational software platform for veterans navigating VA disability claims. We are not affiliated with the U.S. Department of Veterans Affairs or any government agency. Contact: support@claimrecon.com.
Email address (if you subscribe to our mailing list or create an account). Payment information (processed securely by our payment processor; we do not store credit card numbers). Information you enter into our tools: disability conditions, ratings, claim details, and personal statement content. Documents you upload to our Decision Letter Analyzer (processed to generate your analysis; deletion policy below).
IP address, browser type, device type, operating system. Pages visited, time on site, referral source. Cookies for subscription access verification (cr_access, cr_expires). Anonymized usage analytics with no personal identifiers.
We do not collect Social Security numbers, VA file numbers, DD-214 data, eBenefits credentials, VA.gov login information, or military service records. We do not access your VA claims file or any government system on your behalf.
We recognize that information about disability conditions, ratings, and medical symptoms constitutes sensitive health-related data. We treat all disability-related information entered into our tools with the highest level of care. This data is processed only to deliver the educational service you requested (e.g., calculating a combined rating, generating audit findings). We do not sell, share, rent, or provide this information to any third party for any purpose other than what is strictly necessary to operate the service. We do not use this data to train AI models. We do not retain uploaded documents after the processing window described below.
While Claim Recon is not a HIPAA-covered entity, we voluntarily apply data protection standards consistent with sensitive health information handling. We comply with the FTC Health Breach Notification Rule for non-HIPAA entities and the Washington My Health My Data Act where applicable.
To provide and operate the Platform's educational tools. To process payments. To send email communications you have opted into (tool launches, updates). To improve the Platform through anonymized usage analytics. To detect and prevent fraud, abuse, and unauthorized access. To comply with legal obligations.
We do not sell your personal data. We share data only with vetted subprocessors strictly as required to operate the service: a payment processor, infrastructure providers (hosting and database), and an AI processing provider. All subprocessors we use hold SOC 2 Type II certification (or equivalent recognized standard) and operate under contractual data protection obligations, including commitments not to use customer data for AI model training. We maintain a current list of subprocessors and provide it on request to support@claimrecon.com. We may disclose information if required by law, court order, or to protect our legal rights.
Documents uploaded to the Decision Letter Analyzer are processed to generate your analysis and then automatically deleted from our active systems within 24 hours. Encrypted backups may retain residual data for up to 7 additional days before being overwritten. AI chatbot usage metadata (message counts and session identifiers) is retained for up to 30 days and then automatically deleted. Conversation content is processed by our contracted AI provider under contractual data protection terms and is not retained by Claim Recon after your session ends. Our AI provider does not use API customer data for model training. Email addresses are retained until you unsubscribe. Payment records are retained as required by tax and financial regulations. You may request deletion of your data at any time by contacting support@claimrecon.com. We will process deletion requests within 30 days.
We implement industry-standard security measures including: HTTPS/TLS encryption for all data in transit. HSTS with preload and Content Security Policy headers. No storage of payment card data (handled entirely by a PCI DSS Level 1 processor). Access controls and authentication for premium features. Regular security review of our codebase and infrastructure. In the event of a data breach affecting your personal information, we will notify affected users and applicable authorities in accordance with state breach notification laws (within 30–60 days depending on jurisdiction).
We use minimal cookies: cr_access and cr_expires (subscription verification, functional, not tracking). No third-party advertising cookies. No cross-site tracking. Our analytics are anonymized and cookieless, and do not track individual users across sites.
Depending on your state of residence, you may have the following rights regarding your personal data: Right to know what data we collect. Right to access your data. Right to delete your data. Right to correct inaccurate data. Right to opt out of data sales (we do not sell data). Right to non-discrimination for exercising your rights. To exercise any of these rights, contact support@claimrecon.com. We will respond within 30 days.
California residents have additional rights under the California Consumer Privacy Act as amended by the CPRA. We do not sell personal information. We do not share personal information for cross-context behavioral advertising. Health and disability information is treated as sensitive personal information requiring opt-in consent for secondary uses.
Washington residents have rights under the My Health My Data Act regarding consumer health data. We collect health-related data only with your voluntary input into our tools. We do not sell, share, or use health data for any purpose other than providing the educational service. You may request deletion at any time.
The Platform is not directed to individuals under 18 years of age. We do not knowingly collect personal information from minors. If we become aware that we have collected data from a minor, we will delete it promptly.
We may update this Privacy Policy periodically. Material changes will be communicated via email to registered users and noted by updating the "Last Updated" date. Continued use after changes constitutes acceptance.
Privacy questions or data requests: support@claimrecon.com