Privacy Policy
Last Updated:
Apr 23, 2025
At Sentiva, we are committed to protecting your privacy. This Privacy Policy outlines how we collect, use, and protect your personal information when you interact with our AI platform.
Who We Are
Sentiva (“Sentiva,” “we,” “us,” or “our”) is an AI-native Human Resource Management System (HRMS) provided by Sentiva LLC, located at 254 Chapman Rd, Ste 208 #20742, Newark, Delaware 19702. We help employers hire, onboard, develop, engage, and retain their people.
Sentiva acts as:
Data Processor (or “Service Provider”) for HR data our customers upload or generate inside the platform; and
Data Controller for personal data we collect on sentiva.com (the "Site") and for limited telemetry used to maintain and improve the plaform.
Scope of This Policy
This Privacy Policy explains:
Section | What it Covers |
3 | The personal data we collect |
4 | How and why we use your data (legal bases) |
5 | How we share or disclose data |
6 | International data transfers |
7 | Security measures |
8 | Data retention |
9 | Your privacy rights |
10 | Cookies and similar technologies |
11 | Children’s data |
12 | Policy changes |
13 | Contact details and Data Protection Officer |
Personal Data We Collect
Category | Examples | Collected From |
Account and Contact Data | Name, work email, phone, company, role | Website forms, demo requests |
HR Platform Data | Employee profiles, CVs, performance records, survey responses, compensation, and benefits info | Customer HR admins, data imports, end-users |
Usage and Device Data | IP address, browser type, device IDs, activity logs, AI-model interaction logs | Cookies, SDKs, server logs |
Marketing Data | Newsletter preferences, event attendance, and interaction history | Emails, webinars, cookies |
Support Data | Ticket content, call recordings (where allowed) | Users contacting support |
Special Categories: Where customers process sensitive HR data (e.g., disability information), Sentiva acts purely as a processor and processes such data only on documented customer instructions.
How and Why We Use Personal Data
Purpose | Typical Data | Legal Basis* |
Provide and secure the platform | Account, Usage, HR Platform Data | Contract (GDPR Art 6 (1) (b)); Legitimate Interest |
AI-powered features (e.g., candidate scoring, predictive analytics) | HR Platform and Usage Data | Contract / Legitimate Interest |
Improve products and develop new features (including model training on de-identified data) | Pseudonymised Usage Data | Legitimate Interest / Consent when required |
Respond to enquiries and provide support | Account and Support Data | Contract |
Marketing communications, webinars, and newsletters | Account and Marketing Data | Consent (opt-in) / Legitimate Interest (B2B soft opt-in) |
Compliance with law, fraud prevention | Any relevant data | Legal Obligation |
*For CCPA/CPRA, these purposes align with “business purposes” 1798.140(e)and(f). Cookies and tracking technologies
Sharing and Disclosure
We never sell personal information. We only share it with:
Authorized service providers (cloud hosting, email, analytics, payment processing) under GDPR-compliant contracts.
Customers (employers)—HR data inside their tenant is visible to their authorized users.
Professional advisers (lawyers, auditors, insurers) under confidentiality.
Authorities where lawfully required (e.g., court orders).
Corporate transactions—in a merger, acquisition, or asset sale, subject to safeguards.
A current subprocessors list is always available at sentiva.ai/subprocessors.International Transfers
We host data primarily in [region (US North)]. Where data moves outside the EEA or UK, we rely on:
EU Standard Contractual Clauses (SCCs) or UK IDTA;
Additional technical measures (encryption in transit and at rest); and
Data minimization.
Security
Sentiva is built cloud-native with security by design:
ISO 27001-aligned controls, annual penetration testing
AES-256 encryption at rest, TLS 1.2+ in transit
Role-based access control, SSO/SAML, MFA
24 × 7 monitoring and incident response
Data Retention
Data Type
Default Retention
Customer HR data
Until subscription ends + 30 days (or as contractually agreed)
Analytics logs
12 months (aggregated thereafter)
Marketing opt-in records
Until opt-out + 5 years
Support tickets
2 years
Your Rights
Depending on your jurisdiction, you may have rights to:
Access or receive a copy of your data
Correct or delete personal data
Object to or restrict processing
Data portability
Withdraw consent
Lodge a complaint with a supervisory authority
To exercise any right, email privacy@sentiva.ai or use the in-app request portal. We respond within 30 days.
Cookies and Similar Tech
We use:
Cookie Type
Purpose
Examples
Essential
Login, site security
session_id
Analytics
Understand site usage
Google Analytics (_ga)
Functionality
Remember preferences
language, theme
Marketing
Measure campaigns
LinkedIn Insight, HubSpot
You can manage preferences anytime via our Cookie Settings banner.
Children's Privacy
Sentiva is a B2B service not directed to children under 16. We do not knowingly collect their data. If you believe a child’s data has been provided, contact us for deletion.
Changes to This Policy
We may update this Privacy Policy from time to time. Material changes will be notified on the Site or via email with at least 14 days’ notice where required.
Contact and Data Protection Officer
Sentiva LLC
254 Chapman Rd, Ste 208#20742, Newark, Delaware 19702
Email: privacy@sentiva.com
DPO: Rukshan Salgado, dpo@sentiva.comIf you have any questions about this Policy or how Sentiva protects personal data, please contact our DPO.
