Privacy Policy

Controller: NewDmension LLC (Miami, Florida, USA). Contact: privacy@sybana.app

This policy explains how we process data in Sybana (B2B for healthcare professionals). It’s not legal advice and may be updated.

Data we process

• Account data: name, email, billing details.
• Service usage and basic telemetry.
• Payments processed by Stripe; we don’t store card numbers.
• Content you upload (medical history, prescriptions, documents, etc.).

Purposes

• Provide the service, support, and security.
• Billing and tax compliance.
• Product improvement with aggregated/anonymous stats.
• Operational communications; marketing only with consent.

Legal bases

• Contract performance (Terms of Service).
• Legitimate interest (improvements and security).
• Legal obligation (accounting/billing).
• Consent (marketing, where applicable).

Retention

You can delete your account from the app. When you do, we delete app data and keep for 7 years a minimal accounting record without PII (Stripe IDs, amounts, dates, and taxes) for US tax obligations.

Recipients/processors

• Stripe (payments).
• Supabase (database, storage, and auth).
• Auxiliary providers (email, error reporting, basic analytics).
• Other providers necessary to operate the service.

International transfers

The controller is in the US and may use providers with servers outside your country. We apply appropriate technical and contractual measures.

Your rights

Access, rectification, erasure, objection, restriction, and portability. Email us at privacy@sybana.app from your account email.

Security

Encryption in transit, access controls, and event logging.

Changes

We’ll publish changes on this page. Continued use implies acceptance.