How is my data secured on Sanzu?
At Sanzu, we prioritise user data security by deploying advanced encryption methodologies and by housing the information in secure data centres.
Who has access to my data?
Your data is exclusively accessible by you. Sanzu only retains user data for the necessary duration to deliver services and fulfil legal obligations. Backup copies of this data exist purely for disaster recovery purposes and are subject to stringent privacy and security standards akin to primary data.
Can I control who sees my data?
Absolutely. On Sanzu, you decide what specific data your clients view. This flexibility extends to session notes, which can be shared retroactively from prior consultations. This same level of control is applied when you refer clients to other treaters. Moreover, users can access, amend, or erase their data, including clinical records, in line with relevant regulations.
What measures does Sanzu take to ensure data protection?
Sanzu blends technical, administrative, and physical measures to guarantee data protection. Key strategies include data encryption, consistent security assessments, staff training on data protection principles, and multi-factor authentication. Moreover, we consistently update our software to counter any emerging vulnerabilities.
How is client data protected?
Sanzu employs the same rigorous standards for client data as it does for treater data. This entails encrypted data transfers, secure storage solutions, and restricted access to maintain the confidentiality of sensitive client data.
How do I report a data breach?
Should you suspect a data breach, it's imperative to notify Sanzu's support team at support@sanzu.ch immediately. We have structured procedures in place for such incidents to quickly address and neutralise potential threats.
How do I request a data deletion?
Within Sanzu, head to ‘Manage Treater Info’ under the 'Profile' section to delete specific profile segments. For a complete account deletion, go to ‘Profile’, select ‘Other Settings’, and then opt for ‘Delete Account’. On account deactivation or deletion, all your personal data will be irrevocably removed from our systems and databases. Clinical records will be disposed of securely, in alignment with industry standards and legal stipulations.
How does Sanzu comply with GDPR and revFADP regulations?
Sanzu rigorously adheres to GDPR and revFADP regulations when engaging with residents of the European Union and Switzerland. We acquire explicit user consent for data collection, provide transparency regarding data utilisation, recognise the right to data deletion, and uphold stringent data security norms.
What is Sanzu's data retention policy?
Sanzu may retain non-identifiable and non-sensitive data, like usage metrics and anonymized user analytics, indefinitely for analytical purposes. Personal data linked to user accounts remains on our platform for the duration of account activity or as long as necessary to offer our services. Upon account deactivation or deletion, we securely expunge this data in line with our policy. Clinical records pertinent to mental health, such as treatment plans and session notes, will be preserved for the entire period of a user's active engagement on our platform. When the engagement concludes or upon user request, we ensure this data is securely deleted.
Was this article helpful?
That’s Great!
Thank you for your feedback
Sorry! We couldn't be helpful
Thank you for your feedback
Feedback sent
We appreciate your effort and will try to fix the article