SanaFin

Legal

Privacy Policy

Effective scope: website, commercial inquiries, and contracted platform operations.

What we process

SanaFin processes data required to operate escrow-backed healthcare contract workflows. This may include account identifiers, contract metadata, verification events, payout events, and operational audit logs.

How data is used

  • Evaluate contract rules and release conditions.
  • Support reconciliation, exception handling, and dispute review.
  • Maintain security monitoring and auditability of platform actions.
  • Respond to enterprise onboarding, support, and legal requests.

Data handling controls

  • Data minimization and purpose limitation.
  • Role-based access controls (RBAC).
  • Retention controls aligned to legal obligations.
  • Operational logging with actor attribution.

Cross-border and regulatory context

Implementations are designed to support GDPR-aware processing. Each production deployment requires customer legal review for jurisdiction-specific obligations.

Privacy contact

For data processing requests, contact sales@sanafin.tech.