The short version: only what we need, only for as long as we need it, never shared, never pooled.
We collect only what is needed to engineer, certify, and deliver a Knowledge Asset to you: the documents and data you upload, the people on your team who use the platform, and the queries your AI sends.
We do not collect information about your end users beyond what your engagement requires.
Per-customer isolation is structural: each organisation's sources, facts, and audit logs live in a dedicated tenancy. Your data is not pooled, not used to train shared models, and not shared with any third party without your written consent.
Source documents you upload remain owned by you. Healthattica receives only the rights it needs to build, certify, and operate the Knowledge Asset you commission.
This site uses no third-party analytics or advertising trackers. We rely on minimal, first-party telemetry to keep the page running and surface obvious errors.
If we add any analytics tooling, it will be documented here first.
The tamper-evident audit log on every Knowledge Asset is exportable on demand and verifiable independently. We do not gate visibility into your own usage data.
Write to hello@healthattica.com with any access, correction, or deletion request. We will respond within ten working days.
Last updated: 2026-06-17. Healthattica reserves the right to update this policy; changes will be reflected on this page.