Last updated: June 30, 2025

This Privacy Policy describes how SensifAI Health Inc. (“we”, “our”, “us”) collects, uses, discloses, retains, and protects personal information submitted through our website https://sensifai.health/ (the “Website”).

1. Consent and Purposes

We collect personal information only with your prior, clear, free, and informed consent. Consent is requested separately for each specific purpose, and you have the right to withdraw consent at any time by contacting us at contact@sensifai.health.

Contact Form Inquiries: With your consent, we collect the information you submit in our main contact form (name, email address, phone number [optional], and message content) to respond to your questions and requests regarding our services. You must explicitly check an unchecked box agreeing to this before submission.

2. Types of Personal Information Collected

• Name (e.g., first and last name)
• Email Address
• Message Text (free text field; may contain personal or sensitive details if you choose to include them)

No health, medical, payment, or other sensitive data is intentionally requested or collected.

3. Data Collection and Storage

Collection Method: Data is collected solely via the contact form on the Website.

Retention Location: Submitted form data is transmitted and stored on our hosting provider’s servers (uPress, located in Israel) and delivered to our internal email inbox (contact@sensifai.health). No cloud-based CRM or third-party database is used.

4. Data Sharing and Roles

We do not sell or lease personal information. Data is accessed only by authorized personnel under the following roles and responsibilities:

• Hosting Provider (uPress): Maintains physical and technical security of server infrastructure; does not access form contents except for technical troubleshooting under confidentiality obligations.
• Website Maintenance Team: Under contract to SensifAI Health Inc., performs software updates and ensures functional operation; accesses form submissions only for troubleshooting if requested.
• Authorized Employees: Designated staff at SensifAI Health Inc. with the responsibility to read and respond to inquiries.
  
  

5. Data Retention and Destruction

Retention Period: Personal information received via the contact form is retained for a period of 3 years from the date of submission, unless you request earlier deletion.

Destruction Procedures: At the end of the retention period, data is securely deleted from both our email system and server logs. Secure deletion methods include permanent deletion from mail servers and removal of backups containing the data.

6. Your Rights

Under Quebec Law 25 and the GDPR, you have the following rights regarding your personal information:

• Access: Request confirmation of whether we hold your data and receive a copy.
• Correction: Request rectification of incomplete or inaccurate data.
• Deletion: Request erasure of your personal data when no longer necessary or if consent is withdrawn.
• Portability: Request transfer of your data to another service provider in a structured, commonly used format.
• Restriction: Request limitation of processing under certain circumstances.
• Objection: Object to processing for direct marketing or legitimate interests.

To exercise any of these rights, contact us at contact@sensifai.health. We will respond within 30 days.

7. Complaint Handling

If you have any concerns about how we handle your personal information, please contact our Privacy Officer at privacy@sensifai.health. We will acknowledge receipt of your complaint within 5 business days and aim to resolve it within 30 days. Should you remain dissatisfied, you may file a complaint with the Commission d’accès à l’information du Québec or, for GDPR matters, the relevant European Data Protection Authority.

8. Security Measures

We implement appropriate organizational, physical, and technical measures to protect personal information against unauthorized access, disclosure, alteration, or destruction, including:

• Encrypted transmission using HTTPS/TLS
• Access controls and authentication for all systems handling data
  
  

9. Third-Country Transfers

Data stored on uPress servers in Israel may be accessed by personnel located outside Canada. We ensure that such transfers comply with Quebec Law 25 and GDPR requirements for international data transfers.

10. Changes to This Policy

We may update this policy to reflect changes in legal requirements or our practices. We will post the revised version on this page and update the “Last updated” date.

Contact Information

SensifAI Health Inc.
Email: contact@sensifai.health
Privacy Officer: privacy@sensifai.health