Privacy

Trellova provides software to behavioral-health practices (the clinicians' employer or business entity). Practices are our customers. Their patients' Protected Health Information passes through Trellova's infrastructure under a HIPAA Business Associate Agreement with the practice.

From practices: company name, billing contact, integration credentials, usage logs.

From patients (via the practice's clinician using Trellova): session audio with explicit consent; clinical notes the clinician signs; measurement-based-care responses the patient submits through a magic-link SMS; demographic information the practice already holds in its EHR.

From visitors to this marketing site: server-side request logs (IP address, user agent, timestamp) for a maximum of 30 days, used only to keep the site running. No third-party analytics trackers, no cookies, no advertising pixels.

Patient data is used solely to provide the service to the practice that captured it — generating notes, submitting prior authorizations, drafting appeal letters. Per the BAA, this is "treatment, payment, and health-care operations" under HIPAA.

We do not use patient data to train any model. We do not share patient data with the practice's competitors. We do not sell patient data to anyone.

With explicit consent recorded in the practice's BAA, we use de-identified, Safe-Harbor-compliant aggregate signals (e.g., "denial rates by payer + CPT code") to improve our payer-criteria library. The library improvements flow back to every customer. No patient-identifiable data ever leaves the originating tenant's encryption boundary.

Patients can request, through their clinician, that we forget their demographic data. We comply within 7 business days. The clinical record itself is preserved under HIPAA's 6-year retention requirement, referenced only by an opaque internal ID with no patient identifiers.

Patients who reply STOP to any SMS message are removed from future messaging within seconds, per the Telephone Consumer Protection Act. They can re-subscribe with START at any time.

All production data is hosted in AWS regions inside the United States (default us-east-1 for primary; us-west-2 for disaster recovery). No data leaves the US.

Privacy questions: privacy@trellova.com. Patient-rights requests should be routed through the practice that captured the data; Trellova cannot honor a patient request directly without the practice's authorization, per HIPAA.