Sentur Recovery: Privacy & Security

Your Privacy is Our Priority

At Sentur Recovery, we understand that your journey to healing is deeply personal. That's why we prioritize the privacy and security of your data every step of the way. This page provides all the information you need to feel confident that your personal information is safe and secure.

Our Commitment to Your Security

1. Encryption at Rest and at Transit

Your data is protected with two levels of encryption, provided by the HIPAA-compliant Google Cloud environment. Your data is encrypted while stored on a disk or backup media. Additionally, when communicating with our servers all data that is sent to Sentur Recovery and back to the server is encrypted. Whether you're engaging with Sofia, your AI recovery guide, or accessing your personalized recovery plan, all communications are fully encrypted to ensure that your information stays private.

What does this mean for you?

  • All data sent between you and Sentur Recovery is encrypted, meaning only you and your care team can access it.
  • This includes your personal details, session data, and messages—ensuring complete confidentiality.

2. Confidentiality of Interactions with Sofia

All interactions with Sofia, including your conversations, messages, and session data, are treated with the utmost confidentiality. Every interaction is encrypted, ensuring that only you and your authorized care team have access to this information.

What you need to know:

  • Sofia’s conversations are stored securely and encrypted to prevent unauthorized access.
  • No personal information you share with Sofia will be disclosed to third parties without your explicit consent.

How we protect your confidentiality:

  • Your interactions with Sofia are securely stored and never shared outside the platform unless it’s part of your care team's review.
  • Sentur ensures strict adherence to privacy regulations like HIPAA to protect your personal information.

3. Control Over Your Data

At Sentur, you are always in control. You decide what data you share, and you have full access to review or delete your information at any time. Your privacy is in your hands.  The only event where we will notify your clinical team without your prior authorization is in the event Sofia, your AI companion, detects suicidal ideation.  In this instance, for ethical and safety reasons, your clinical team will be notified in the clinical portal without your permission and you will be reminded of this should this need to be completed.  

You can:

  • Access your personal data at any time.
  • Request your data to be deleted permanently from our system.
  • Easily manage your privacy settings with user-friendly controls.

4. Privacy by Design

Sentur Recovery is built with privacy as a core principle. From the moment you sign up, your data is handled according to the highest standards of privacy and security compliance, including HIPAA and GDPR.

Our approach:

  • Your data is anonymized when used for research or development.
  • We only collect the information necessary to support your recovery.
  • Your personal data is never sold or shared with third parties without your explicit consent.

5. Data Sharing with Third Parties

We understand your concerns about third-party data sharing, and we want to reassure you that your information will never be shared with insurance companies, third parties, or external organizations without your explicit consent.

What you need to know:

  • Sentur adheres to privacy laws such as HIPAA, meaning your personal health information remains confidential.
  • If there’s ever a need to share your data, you will be informed and must provide explicit consent before any information is shared.

6. Use of Your Data for Model Training

Your personal data will not be used to train our AI model without your consent. Any data used to improve or enhance the platform is anonymized and de-identified, ensuring that it cannot be traced back to you or any other individual user.

How we handle this:

  • Your personal interactions and identifiable data are never used for AI training or development without your explicit consent.
  • Only anonymized, de-identified data may be used for platform improvements, and this process complies with all privacy regulations, including HIPAA and GDPR.

7. Data Retention & Deletion

We retain your data only for as long as it is necessary to support your recovery. When it’s no longer needed, we securely delete it according to strict regulatory guidelines. You can also request deletion at any time.

How it works:

  • Data is stored securely for the duration of your time on the platform.
  • You can request to have all your personal information permanently deleted if you decide to stop using Sentur Recovery.

8. Regular Security Audits

Our platform undergoes regular third-party security audits to ensure that your data remains protected. These independent assessments help us identify potential vulnerabilities and maintain the highest security standards.

What you need to know:

  • Security audits ensure that we remain up-to-date with the latest security practices.
  • Any vulnerabilities discovered are addressed immediately, and updates are applied regularly.

9. Zero Trust Security Model

We use a Zero Trust security model, meaning every access request within our platform is verified, even if it originates from within our system. This means that no one gets automatic access—everything is checked for security.

Why this is important:

  • Every action in the system is verified to ensure it’s authorized, providing an extra layer of protection.
  • Even if an internal process is compromised, it won’t automatically gain access to your data.

Frequently Asked Questions (FAQs)

How is my data protected on Sentur Recovery?

All your data is encrypted using advanced encryption standards. Your personal details, session data, and conversations with Sofia are all kept private and secure.

Who has access to my information?

Only you and your clinical care team have access to your data. Your personal information will never be shared without your consent, and we strictly follow privacy laws such as HIPAA and GDPR.

Will my information be shared with insurance companies or other third parties?

No, your information will never be shared with insurance companies or other third parties without your explicit consent. We adhere to all relevant privacy laws to ensure your personal health information remains confidential.

Can I delete my data?

Yes, you have full control over your data. You can request to have your data permanently deleted at any time, and we will ensure it is securely removed from our systems.

Will my data be used to train the AI model?

Your personal data will never be used to train our AI model without your explicit consent. Any data used for AI training is de-identified and anonymized, ensuring it cannot be traced back to you.

How does Sentur comply with privacy regulations?

Sentur Recovery complies with all relevant privacy regulations, including HIPAA in the U.S. and GDPR for our international users. We are committed to meeting the highest standards of data protection globally.

What happens in the case of a data breach?

In the unlikely event of a data breach, we will notify you immediately and take swift action to secure your data. We have strict protocols in place to handle such situations, and your privacy remains a top priority.

Your Security, Our Promise

At Sentur Recovery, your trust is at the heart of everything we do. We are dedicated to maintaining your privacy, protecting your data, and providing you with a safe space to heal.

If you have any questions or concerns about your privacy or the security of your data, please don't hesitate to reach out to us at support@senturhealth.com.