Legal
Last updated: February 2026
PrivaSend is designed with privacy as its foundation. This policy explains exactly what we collect, what we don't, and how your data is handled.
We collect the minimum necessary to operate the service. When you create an account, we store your name, email address, and practice name. When you use PrivaSend to scan a document, we log anonymized metadata only: scan counts, timestamps, file type, PHI category counts, and which AI model was selected. We do not collect or store the actual content of your documents, patient names, or any Protected Health Information.
We never store raw PHI values. We never store the original text or files you upload. We never store your prompts or AI responses in identifiable form. Document sessions are automatically deleted after 24 hours. Our architecture is designed so that PrivaSend cannot become a data honeypot.
Anonymized metadata is used solely to improve PrivaSend's redaction accuracy and to display your usage statistics on the dashboard. We do not sell your data. We do not share your data with advertisers. We do not use your documents to train AI models.
When you send a de-identified document to an AI model through PrivaSend, that content is transmitted to the selected provider (OpenAI, Anthropic, or Google). By that point, all PHI has been removed. We are not responsible for those providers' data practices on the de-identified content.
Signed-in users: session data (de-identified documents, chat history) is automatically purged after 24 hours. Account metadata (name, email, scan counts) is retained until you delete your account. You can request account deletion at any time from Settings.
PrivaSend operates as a Business Associate under HIPAA and aligns with Safe Harbor de-identification standards. We are not a covered entity. BAAs are available for Team plan customers upon request. For more information, see our BAA Information page.
For privacy questions, please contact us at privacy@privasend.com.