Updated: April 8, 2026
Veeva Systems is committed to maintaining a privacy program that is designed around trust, transparency and respecting your rights in your personal information. This privacy notice describes how we process personal information, including what information we collect, why we collect it, how we use it, how we may share it, and your controls over your personal information. Veeva Systems Inc. is the data controller for Veeva’s products and services.

This privacy notice describes the personal information that we process as part of:

  • Our websites where this privacy notice is provided,
  • Veeva-sponsored events and marketing activities,
  • Engaging with representatives of our customers, suppliers and prospective customers and suppliers, and
  • Our products.

Our Job Applicant Data Privacy Notice can be found by visiting careers.veeva.com.

Websites. When you visit our websites, we collect the following types of information.

Category of Information Description
Device & Usage We collect device and usage information such as cookie records, browser type, internet service provider (ISP), device IP address, operating systems and versions, device motion data, web beacons and clickstream data.
Registration When you create an account, respond to surveys, register for events, subscribe to publications, or engage in any similar activities through our websites, we collect information that you provide through that process, such as your name, email address, phone number, username and password, job title and survey responses.
Account Verification If you log into an account you’ve created with us, we collect your IP address, username and password, and other related information we need to verify you are the account owner, before allowing you to access that account.

Events and Marketing. When you register to attend a Veeva-sponsored event, such as a webinar, summit or forum, or subscribe to our publications and newsletters, we collect the following types of information about you.

Category of Information Description
Registration When you create an account, respond to surveys, register for events, subscribe to publications, or engage in any similar activities through our websites, we collect information that you provide through that process, such as your name, email address, phone number, username and password, job title, survey responses and profile photos.
Account Verification If you log into an account you’ve created with us, we collect your IP address, username and password, and other related information we need to verify you are the account owner, before allowing you to access that account.
Transactional If there is a fee for the event you have registered for, we will collect information that allows us to collect and process your payment which may include your bank account information or credit or debit card number.
Attendance When you attend a Veeva-sponsored event, we collect information about the events you attend and how you engage with us and other event sponsors during the event. We may also take video recordings and photographs during the event that may include your likeness.
Public Forums If you engage in our public forums, we collect information you provide such as your public posts.
Device & Usage When you attend an online event and access our publications and newsletters, we collect device and usage information such as cookie records, browser type, internet service provider (ISP), device IP address, operating systems and versions, advertising identifiers, device motion data, web beacons and clickstream data.
Travel Accommodations For in-person events, we may assist with your travel and hotel arrangements and in these cases, we collect information from you to enable us to provide this assistance such as airline and flight information, lodging and dates of travel. We do not collect precise geolocation information.

Representatives of Customers, Suppliers and Prospective Customers and Suppliers. If you are a representative of a Veeva customer, supplier or prospective customer or supplier, we collect the following types of information about you.

Category of Information Description
Professional Identity & Contact We collect information such as your name, email address, phone number, gender, membership in professional associations, unique identification number assigned to your profession (such as NPI and license number) and the name, size and location of the company you work for and your role within it.

Our Products.

As part of our data products, we collect the following types of personal information related to the professional identity of healthcare providers and other industry professionals and stakeholders. The actual information we collect may vary based on applicable laws, which differ depending on where you live.

Category of Information Description
Professional Identity & Contact We collect information such as your name, email address, phone number, gender, membership in professional associations, unique identification number assigned to your profession (such as NPI and license number) and the name, size and location of the company you work for and your role within it.
Professional Activity We collect information about your professional activity such as your specialty, educational background, contributions to events, participation in clinical trials, publications and publicly available collaborations between you and other professionals or companies in the life sciences industry context.
Professional Social Media We collect professional social media information such as hyperlinks to professional network sites, posted content, handles, tweets, hashtags, likes, followers and mentions.
Professional Images and Recordings We collect publicly available video recordings and photographs.
Inferences We collect inferences, such as your interests and engagement preferences, that may be drawn from the above identifiers.

We may combine your information with anonymised data files to help improve decisions on how to interact with you and other healthcare professionals.

Websites. When you visit our websites, we collect your information directly from you and indirectly from you by observing your actions on our website or from your devices. This includes collecting information using analytic tools and other tracking technologies. Please see our Cookie Notice for more information.

Events and Marketing. When you register to attend a Veeva-sponsored event or subscribe to our publications and newsletters, we collect your information from you when you register, as directed by you during the registration process, as you engage with us and as you participate in activities and forums we provide.

Representatives of Customers, Suppliers and Prospective Customers and Suppliers. If you are a representative of a Veeva customer, supplier or prospective customer or supplier, we collect your information directly from you, your employer, our customers and suppliers and from publicly available websites such as LinkedIn.

Our Products. As part of our data products, we collect personal information about healthcare providers and other industry professionals and stakeholders from publicly available sources including government and public records, association websites, institutional websites (hospitals, universities, medical facilities), medical databases and registries, and other online professional profiles and web sources related to your professional activity. We may also collect personal information directly from you, your employer and affiliates, our customers and suppliers who license data to us.

Websites. When you visit our websites, we collect your information to help us understand how you interact with us, to provide you with relevant information and services, and to help us to ensure our websites are working as designed. This includes processing personal information as necessary to analyse, improve and optimise the delivery and use of our websites and their security.

Events and Marketing. When you register to attend a Veeva-sponsored event or subscribe to our publications and newsletters, we collect your information to:

  • provide you with the experience and information you’ve registered for or subscribed to;
  • inform you of other events or information we believe you may be interested in;
  • analyse and improve our events and campaigns;
  • personalise your content and experiences; and
  • enable our suppliers, who are also participating in the Veeva-sponsored event, to contact you about their related products and services.

Representatives of Customers, Suppliers and Prospective Customers and Suppliers. If you are a representative of a Veeva customer, supplier or prospective customer or supplier, we collect information about you to allow us to provide you with information about us, the products, services and events we offer, and how we may work together.

Our Products. As part of our data products, we collect personal information about healthcare organisations, healthcare providers, and other industry professionals and stakeholders for the purpose of enabling our customers to provide up-to-date scientific and medical information or promotional materials to relevant organisations and individuals and to facilitate our customers’ understanding of and improving their communication with such organisations and individuals.

Automated Processing. We do not make decisions about you which have legal or similarly significant effects on you, based solely on the automated processing, including profiling, of your data.

We may share personal information internally and with our subsidiaries and third parties for the following purposes:

  • to support the purposes described in the section above entitled “Why We Collect Information and How We Use It”;
  • to enable third parties to provide services on our behalf;
  • to comply with applicable law, legal obligations and valid legal processes such as search warrants, subpoenas, or court orders;
  • as necessary to establish, exercise or defend against potential, threatened or actual litigation;
  • when we believe in good faith that disclosure is necessary to protect our rights, protect your safety or the safety of others, or investigate or prevent fraud or other illegal activity;
  • in connection with a merger, sale or asset transfer; and
  • for additional purposes with your consent, where consent is required by law.

When we share your personal information, we will take reasonable steps to ensure that we only share the minimum personal information necessary for the specific purpose and circumstance.

We may provide bulletin boards, blogs, or chat rooms on our websites. Any personal information you choose to submit in such a forum may be read, collected, or used by others who visit these forums and may be used to send you unsolicited messages. We are not responsible for the personal information you choose to submit in these forums.

We may post lists of customers and testimonials on our websites that contain information such as customer names and titles. We obtain the consent of each customer prior to posting any information on such a list or posting testimonials. To request removal of your personal information from our blog or forum or to have your testimonials removed, contact us at privacy@veeva.com.

Our Products.

As part of our data products, we also share personal information with pharmaceutical, biotechnology and medical device companies (the life sciences industry) to allow those companies to provide you with scientific information about their products and services and as required by applicable law.

Scope

We use information-gathering tools, such as cookies, pixels and web beacons, to collect information about you as you navigate our websites. These technologies are used in analyzing trends, administering the site, tracking users’ movements around the site and to gather demographic information about our user base.

Cookies

When you visit our website, our website asks your browser to store small text files called “cookies” on your device. Cookies are used to collect information about you, your preferences or your device.

We only use strictly necessary cookies on our website. You cannot deactivate our use of strictly necessary cookies because these cookies are deployed to ensure the proper functioning of our website. These cookies do not store any personally identifiable information.

You can delete all cookies that are stored in your browser, and you can set most browsers to prevent them from being placed. If you do this, you may have to manually adjust some preferences every time you visit the website and some services and functionalities may not work. Please note that your choices are specific to the website you are navigating and to the device and browser you are using. For more information about how cookies work, see aboutcookies.org.

Web Beacons and Similar Technologies

We use web beacons and similar technologies to understand how you use our websites and interact with emails from us and to improve our websites and email communications. Web beacons are clear electronic images that help us understand what content you have accessed. Web beacons do not place information on your device, but they may work in conjunction with cookies to monitor website activity. For example, we may place web beacons in marketing emails that notify us when you click on a link in the email that directs you to one of our websites.

Global Privacy Controls

Global Privacy Controls are mechanisms that allow you to opt out of the sale of your personal information or the use of your personal information for targeted advertising purposes. If you turn on a Global Privacy Control setting and we detect an opt out preference signal, we will honor that preference.

Websites and Apps. We only keep your information for as long as it is necessary and relevant for the purposes described in this privacy notice. We retain your information for two years only (or as otherwise required by law).

Events and Marketing. We only keep your information for as long as it is necessary and relevant for the purposes described in this privacy notice.

Representatives of Customers, Suppliers and Prospective Customers and Suppliers. We retain your information for as long as your account is active, as needed to provide you services, and as necessary to comply with our legal obligations, resolve disputes, enforce our agreements, or as otherwise reasonably necessary for our business purposes.

Our Products. As part of our data products, we keep your information for 10 years after you are no longer professionally active.

We offer you certain controls over your information. These controls may include the right to access, delete, correct, transfer and opt-out or object to the processing of your information. If you choose to exercise your rights, we will respond to your request in accordance with applicable laws, which may vary depending on where you live.

If you wish to exercise your privacy rights, click here or contact us at privacy@veeva.com. In order to process your request, we require certain information about you. We will only use this information to verify your identity and facilitate the processing of your request. We may require you to provide proof of your identity. You may use an authorised agent to submit a request on your behalf. Your authorised agent must have your signed permission or power of attorney to submit a request on your behalf. There may be times when we are unable to fulfill your request; in those cases, we will let you know why we are unable to fulfill your request, subject to applicable law.

To unsubscribe from Veeva marketing emails, click on the “unsubscribe” link located on the bottom of the email. Please note that customers cannot opt out of receiving transactional emails related to the use of Veeva’s products and services.

Our websites and services are not designed for or directed at children, and we do not knowingly collect personal information from children under the age of 13. If you believe we may have mistakenly collected the personal information of a minor without appropriate consent, please contact us using the methods described in the “Contact Us” section and we will investigate and promptly address the issue.

We maintain a privacy and security program with technical, physical and organisational safeguards designed to protect against the wrongful access, use or disclosure of personal information, and to provide a level of security which we believe is appropriate to the risk our processing of your personal information poses to your privacy. We regularly review and modify our security measures to reflect changing technology, laws and regulations, risk, industry and security practices and other business needs. More information about our security program can be found here.

Veeva generally stores information within the United States, European Economic Area (EEA), Australia or New Zealand. However, we are a global company. As a global company, we may transfer your personal information to various locations around the world for the purposes described in this privacy notice. We apply the protections and limitations described in this privacy notice regardless of where we process your personal information.

We also comply with various legal frameworks that enable the cross-border transfer of personal information. Where required, we rely on transfer mechanisms that lawfully support data transfer to locations that are not considered “adequate” by the appropriate data protection authority, which may include standard contractual clauses, obtaining your consent or another recognized transfer mechanism.

Veeva’s Government Access Request Policy

This Government Access Request Policy describes how we respond to requests from governmental and other public authorities (collectively, “Government Authorities”) for access to Customer Data (as defined in our customer agreements) or other personal information (collectively, “Data”).

Validity. We do not voluntarily disclose Data to Government Authorities. We only disclose Data where there is a valid legal basis to do so (such as through a warrant, subpoena or court order). We review all requests on a case-by-case basis and in accordance with applicable law. If we determine there is a valid legal basis for the request, we comply by providing the least amount of Data necessary to respond to the request.

We never create backdoors in our products or services to allow Government Authorities to access Data.

Challenges. We challenge requests if we believe:

  • there is no valid legal basis for it,
  • the request is unlawful,
  • the request is unclear, overly broad or inappropriate, or
  • where compliance with the request would put us in potential breach of applicable laws in another country.

Notification. We notify our customers if a Government Authority requests their Data unless we are legally prohibited from doing so, in the event of an emergency (such as to prevent imminent death or serious physical harm to an individual) or in cases where we reasonably believe such notice would be counterproductive.

Transparency Report. We publish a report of requests we have received and our response to them. We update this report semi-annually.

Type of Request Country of Origin of the Request Action Taken Year
Subpoena US Fulfilled 2020
Search Warrant US Fulfilled 2020

Updated: April 8, 2026

The personal information that we process on behalf of and to provide products and services to our customers, including when customer representatives are users of our products and services, is subject to the terms and conditions of our customer agreements.

Where requested, we offer a Data Processing Addendum and Standard Contractual Clauses to enable our customers to comply with data protection laws applicable to our processing of personal information on their behalf. We process, transfer and maintain customer personal information strictly in accordance with our customer agreements and applicable law.

If you are interested in learning about our customers’ use of your personal information, we encourage you to contact the customer. We cooperate with our customers if they need our assistance in fulfilling requests from individuals to exercise their data privacy rights.

Information about our security program can be found here. A list of our support locations and of our sub-processors can be found here.

From time-to-time, we may change our privacy notice to reflect changing technology, laws, regulations, risk, industry and security practices and other business needs. The most up-to-date version will be found on this website; we post its effective date at the top. If we make a material update, we may notify you by posting notice on our website or by other means, consistent with applicable law.

If you wish to exercise your privacy rights, click here or contact us at privacy@veeva.com.

If you have any questions about our privacy practices, you can contact our Chief Privacy Officer at privacy@veeva.com. You can also write to our data controller, Veeva Systems Inc., or our various local representatives, at the addresses below.

US
Veeva Systems Inc.
4280 Hacienda Drive
Pleasanton, CA 94588 USA

Australia
Veeva Systems Asia Pacific Headquarters
Level 18, 201 Miller Street
North Sydney
NSW 2060

If you have privacy concerns that we are unable to address, in Australia, you may contact the Office of the Australian Information Commissioner, and in New Zealand, you may contact the Office of the Privacy Commissioner.

Interested in learning more?

Contact Us