Security & Compliance
Velan is built with security and privacy at the center of every decision. See what each certification means for you.

Compliance
We operate following corporate governance best practices and regulatory compliance. Our internal processes are periodically audited to ensure policies, controls, and responsibilities are aligned with legal and industry requirements.
- Documented and regularly reviewed internal policies
- Internal access controls and segregation of duties
- Continuous audit and monitoring of operations
- Regular team training on best practices

LGPD — Brazilian Data Protection Law
Velan complies with Law No. 13,709/2018 (LGPD). We collect only the data necessary for service delivery, with a defined legal basis, and ensure full exercise of data subject rights.
- Data collection with defined purpose and legal basis
- Data subject rights guaranteed: access, correction, deletion, and portability
- Designated Data Protection Officer (DPO)
- Clear and accessible Privacy Policy
- Data retained for the minimum necessary period

SSL — Secure Connection
All communications between your device and Velan are protected by TLS/SSL encryption. This ensures your login credentials, financial information, and personal data never travel exposed over the network.
- TLS 1.2/1.3 encryption on all endpoints
- Valid SSL certificate with automatic renewal
- HTTPS enforced across the entire platform
- Data at rest also encrypted on AWS infrastructure
Questions about privacy or security? Contact us.