Privacy Policy | Santivox

1. Introduction

Welcome to Santivox ("we," "our," or "us"). We are committed to protecting your privacy and ensuring you have a positive experience on our website and in using our AI Voice Receptionist services. This Privacy Policy applies to our website and our services.

2. Data Collection and Usage

We collect and process various types of data to provide our AI reception services:

Call Audio & Transcripts: We process inbound audio to understand caller intent and provide a relevant AI text or voice response.
Caller Information: We log phone numbers and caller ID information strictly for the purpose of booking appointments and returning missed calls.
Clinic Account Data: We store clinic details, calendar availability, and billing information required for service delivery.

⚕️ HIPAA Compliance & PHI

For dental and medical clinics in the United States, Santivox operates in a HIPAA-compliant environment. We act as a Business Associate under a Business Associate Agreement (BAA).

All Protected Health Information (PHI) is encrypted at rest (AES-256) and in transit (TLS 1.3).
We do not sell, rent, or use patient data to train public AI models.
Voice transcripts are retained only for the duration specified by the clinic's data retention policy.

3. Third-Party Processors

We utilize industry-leading third-party sub-processors to deliver our services, including:

Twilio: For telecommunications routing and SMS delivery.
OpenAI: For natural language processing and intent classification. All data sent to OpenAI via our enterprise API is opted out of model training by default.
Google Workspace: For booking and Calendar OAuth2 synchronization.

4. Contact Us

If you have any questions about this Privacy Policy, please contact our Data Protection Officer at privacy@santivox.com.