Last Updated: December 8, 2025
Veeva is committed to maintaining a privacy program that is designed around trust, transparency and respecting your rights in your personal information. This privacy notice describes how we process personal information, including what information we collect, why we collect it, how we use it, how we may share it, and your controls over your personal information.
This privacy notice applies to the personal information we process as part of the Veeva Engage mobile application and related websites (“Engage”).
When you visit Engage, we collect the following types of information:
| Category of Information | Description |
|---|---|
| Device & Usage | We collect device and usage information such as cookie records, browser type, device IP address, operating systems and versions, and device motion data. |
| Registration | When you create and use your account, we collect information that you provide through that process, such as your name, email address, title, and the name of the organization you represent. |
| Account Verification and Management | If you log into an account you’ve created with us, we collect your IP address, email address, and other related information we need to verify you are the account owner before allowing you to access that account. |
| Engagement | As you use Engage, we collect information about how you use it, such as the preferences you enter, the pages and content you view, the searches you conduct, the people you follow or connect with, comments and other content you post, the types of communications you have, the types of services or transactions you request, the dates and times of your interactions and activities, and the content of your communications. |
When you visit and use Engage, we collect information directly from you, indirectly from you by observing your actions on our app or website, from your devices, and from third parties who refer you to us.
When you create an account with us and use Engage, we collect your information to:
We may also use your information:
You will not be subject to decisions based on automated data processing without your prior consent.
As you use Engage, you automatically share interest and usage information with life sciences companies. For example, when you use Engage’s messaging feature to communicate with a life sciences company, the company collects your profile data (basic information about you, such as your name, title and contact information) and the communication that you share with them. Similarly, when you use Engage to view, click on, play or otherwise interact with the content a life sciences company has posted to Engage (e.g., videos, photos, and articles), that company collects information about what content you interacted with, on what date, at what time, and for how long. For more information about how Engage enables these interactions and the sharing of your information see here. These life sciences companies process the personal information they receive from you in accordance with their respective privacy statements.
We may share personal information internally and with our subsidiaries, service providers and other third parties for the following purposes:
We will not sell your personal information or share it with third parties for cross-contextual behavioral advertising.
When you visit Engage, Engage asks your browser to store small text files called “cookies” on your device. We classify cookies into the following categories:
Strictly Necessary. Engage uses strictly necessary cookies. You cannot deactivate our use of strictly necessary cookies because these cookies are deployed to ensure the proper functioning of Engage. These cookies do not store any personally identifiable information.
Functional. Engage also deploys functional cookies. These cookies generally enable Engage to provide enhanced functionality and personalization. They may be set by us or by third party providers whose services we have added to our pages.
You can delete all cookies that are already on your computer, and you can set most browsers to prevent them from being placed. If you do this, you may have to manually adjust some preferences every time you visit Engage, and some services and functionalities may not work. Please note that your choices are specific to the website you are navigating and to the device and browser you are using.
Engage may contain links to other websites, products, or services that we do not own or operate. We are not responsible for the privacy practices of these third parties, including the life science companies that you may interact with. Please be aware that this privacy notice does not apply to your activities on these third-party services or any information you disclose to these third parties. We encourage you to read their privacy policies before providing any information to them.
We maintain a privacy and security program with technical, physical and organizational safeguards designed to protect against the wrongful access, use or disclosure of personal information, and to provide a level of security which we believe is appropriate to the risk our processing of your personal information poses to your privacy. This includes but is not limited to the use of industry standard encryption for data in transit and at rest. We regularly review and modify our security measures to reflect changing technology, laws and regulations, risk, industry and security practices and other business needs.
Engage is not designed for or directed at children, and we do not knowingly collect, maintain or use personal information from children under 18 years of age. If you believe we may have mistakenly collected the personal information of a minor without appropriate consent, please contact us at engage-privacy@veeva.com and we will investigate and promptly address the issue.
You can access, edit, delete and otherwise manage your personal information that is maintained within your Engage account by using the features available when you log in to your account. If you wish to permanently delete your Engage account, you can do so by going to “Settings” and clicking “Delete My Account”.
We respond to requests of individuals to exercise their data protection rights in accordance with applicable laws, which may vary depending on where you live. We may ask that you verify your identity to facilitate the processing of your request in a secure manner. If you wish to exercise your privacy rights, email engage-privacy@veeva.com. In order to process your request, we require certain information about you. We will only use this information to verify your identity and facilitate the processing of your request. There may be times when we are unable to fulfill your request; in those cases, we will let you know why we are unable to fulfill your request, subject to applicable law.
We are a global company. As a global company, we may transfer your personal information to various locations around the world for the purposes described in this privacy notice. We apply the protections and limitations described in this privacy notice regardless of where we process your personal information. We also comply with various legal frameworks that enable the cross-border transfer of personal information. Where required, we rely on transfer mechanisms that lawfully support data transfer to locations that are not considered “adequate” by the appropriate data protection authority, which may include standard contractual clauses, obtaining your consent or another recognized transfer mechanism.
Veeva Systems Inc. complies with the EU-U.S. Data Privacy Framework (EU-U.S. DPF), the UK Extension to the EU-U.S. DPF (UK Extension), and the Swiss-U.S. Data Privacy Framework (Swiss-U.S. DPF) as set forth by the U.S. Department of Commerce. We have certified to the U.S. Department of Commerce that we adhere to the (i) EU-U.S. DPF Principles with regard to the processing of personal information received from the European Union in reliance on the EU-U.S. DPF and from the United Kingdom (and Gibraltar) in reliance on the UK Extension, and (ii) Swiss-U.S. DPF Principles with regard to the processing of personal information received from Switzerland in reliance on the Swiss-U.S. DPF. If there is any conflict between the terms in this privacy notice and the EU-U.S. DPF Principles and/or the Swiss-U.S. DPF Principles, the Principles shall govern. To learn more about the DPF program and to view our certification visit the Data Privacy Framework Program website.
The DPF applies to European, Swiss and UK individuals whose personal information is transferred to the United States. In compliance with the DPF, we allow these individuals the opportunity to choose (through an opt-out mechanism) whether their personal information is to be disclosed to a third party or used for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized. The "Your Controls" section provides more information about these rights and the mechanisms we provide to exercise them. If we collect sensitive personal information on these individuals, we will obtain explicit consent before disclosing sensitive personal information to a third party or using it for a purpose that is materially different from the purpose(s) for which it was originally collected or subsequently authorized.
If you have questions or concerns regarding our handling of your personal information under the DPF or about our privacy program generally, please contact us at privacy@veeva.com. If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider, TrustArc, (free of charge) at https://feedback-form.truste.com/watchdog/request. If neither process resolves your question or concern, you may be able to pursue binding arbitration; visit the Data Privacy Framework Program website for more information about how to submit a complaint.
The Federal Trade Commission has jurisdiction over our compliance with the EU-U.S. DPF, the UK Extension, and the Swiss-U.S. DPF. We remain responsible for personal information that we transfer to third parties for processing on our behalf. We may be required to disclose personal information that we handle under the DPF in response to lawful requests by public authorities, including to meet national security or law enforcement requirements, as described in more detail by our Government Access Request Policy.
We will retain your information until it is no longer necessary to provide our services, until you request its deletion as described in the section above entitled “Your Controls” or as otherwise required by law.
To exercise your rights, email engage-privacy@veeva.com. If you have any questions about our privacy practices, you can contact our Chief Privacy Officer at:
Veeva Systems Inc.If you have an unresolved privacy or data use concern that we have not addressed satisfactorily, please contact our U.S.-based third party dispute resolution provider, TrustArc, (free of charge) at https://feedback-form.truste.com/watchdog/request.
From time to time, we may change this privacy notice to reflect changing technology, laws, regulations, risk, industry and security practices and other business needs. The most up-to-date version will be found on this page; we post its effective date at the top. If we make a material update, we may notify you by posting notice on our app, website or by other means, consistent with applicable law.
Veeva Systems Inc. is the data controller for Engage. The legal basis for processing your registration, account verification and management, and communication information is that the processing is necessary for the performance of a contract with you or is otherwise processed with your consent. When we process your personal information to achieve the other purposes set forth in this privacy notice, we do so as necessary to realize our or others’ legitimate interests, including enabling and supporting information exchanges, communications and research collaborations between physicians and life science companies in the interest of improving medicine and healthcare and to generate interest for Veeva's applications, services and business, unless those interests are overridden by your interests or fundamental rights and freedoms.
Refer to the section of this privacy notice entitled “Your Controls” for information on how to exercise your rights. You may also exercise your rights by calling us (free of charge) at 1 (877) 807-3230.
The categories of personal information we collect include:
We collect this information to support the purposes described in the section of this privacy notice entitled “Why We Collect Information and How We Use It.” We collect your personal information from the sources described under the “How We Collect Information” section of this privacy notice. We disclose the information from the above listed categories for the purposes and to the categories of recipients described in the section of this privacy notice entitled “Sharing Your Information”.
We do not use or disclose sensitive personal information for any purpose other than those specified in Section 7027(m) of the CCPA regulations.
Veeva is a global company. Veeva Japan KK is a wholly owned subsidiary of Veeva Systems Inc., which is based in the United States. Veeva Systems Inc. acts as a business operator related Veeva’s processing of personal information within Veeva Japan KK to jointly pursue the purposes described in this privacy notice.
The party that is responsible for managing the jointly used personal information is as follows:
Veeva Systems Inc.