This policy explains how Sento handles personal data. It covers two situations: when you visit sentohq.com or sign up for early access, and when your company uses Sento to connect customer data sources to AI agents.
If anything here is unclear, write to us at team@sentohq.com and we will answer.
Who we are
For the purposes of GDPR, Sento is the data controller for the personal data we collect about website visitors, prospects, and people who request access. When a customer connects their sources to Sento and we process customer data on their behalf, Sento is a data processor and the customer is the controller. The terms of that processing relationship are set in our Data Processing Agreement, available on request.
What we collect
When you visit sentohq.com
We collect basic technical information that any modern website handles: IP address, browser and device type, referring page, and pages viewed. We use this for security, debugging, and understanding which content people read.
We use a small number of analytics and product tools to do this. The current list:
- Google Analytics 4 for aggregate traffic data
- Vercel for serving the site and basic logs
The full subprocessor list is below.
When you request access or join the waitlist
If you fill in the Request Access form, we collect the information you give us: typically name, work email, company, role, and anything you write in the message field. We use this to evaluate whether your company is a fit for early access, to contact you about Sento, and to keep a record of the conversation.
When you contact us by email or LinkedIn
We keep the message and reply for as long as the conversation is useful, and longer if it relates to a contract or commercial relationship.
When your company uses Sento
When a customer connects sources (HubSpot, Stripe, Intercom, Mixpanel, Gmail, and similar) Sento reads customer data from those sources, transforms it, and exposes it through MCP and our surfaces. That data may include personal data about the customer’s own end users: names, work emails, company affiliations, support ticket content, product usage events, billing records, and email metadata.
Sento processes this data only on the customer’s instructions, under the Data Processing Agreement. We do not sell customer data, and we do not use it to train third-party models. We may process aggregated or anonymized usage telemetry to operate, secure, and improve the service.
How we use personal data and the legal basis
| Purpose | Data | Legal basis (GDPR) |
|---|---|---|
| Operate and secure the website | Technical logs, IP | Legitimate interest |
| Aggregate analytics | Cookies, usage events | Consent, where required |
| Reply to access requests and run sales conversations | Form data, email | Legitimate interest, steps prior to entering a contract |
| Send product updates to people who opted in | Email, name | Consent |
| Provide the Sento product to a customer | Customer-supplied personal data | Performance of contract (with the customer, who is controller) |
| Comply with legal obligations | Whatever is required | Legal obligation |
We do not run automated decision-making with legal effects, and we do not profile visitors for advertising.
Cookies
We use a small set of cookies and similar storage. Strictly necessary cookies keep the site working. We also use analytics cookies, currently Google Analytics 4, to understand site traffic in aggregate. We do not use cookie data for advertising or cross-site profiling. You can disable cookies in your browser at any time.
Subprocessors
Sento uses a small number of third parties to run the product and the business. Where any of these process personal data on behalf of our customers, they are subprocessors under GDPR. Vendors that only process Sento’s own corporate data (for example, payroll) are not subprocessors and are not listed.
Infrastructure and product delivery
| Subprocessor | Purpose | Location | Data categories |
|---|---|---|---|
| Vercel | Application hosting and edge delivery | US (corporate); compute in fra1 Frankfurt | Customer data in transit through the application; logs |
| Supabase | Primary data storage (Postgres) | US (corporate); data in eu-north-1 Stockholm | Transformed customer data, source credentials (encrypted) |
| Supabase | Object storage for exports and uploads | US (corporate); data in eu-north-1 Stockholm | Customer data exports, attachments |
AI and inference
| Subprocessor | Purpose | Location | Data categories |
|---|---|---|---|
| Anthropic | LLM inference for agent reasoning | US, zero-retention API tier | Customer data passed in prompts, not retained for training |
| OpenAI, if used | LLM inference for specific surfaces | US, no-training API tier | Customer data passed in prompts |
We do not allow our model providers to train on customer data. Inference runs under API terms that exclude training, and prompts are not retained beyond what the provider needs to operate the API.
Business operations
These touch personal data of website visitors, prospects, and customer admins, not the customer data Sento processes inside the product.
| Subprocessor | Purpose | Location | Data categories |
|---|---|---|---|
| SendGrid | Transactional email | US | Email address, name, message content |
| HubSpot | Managing prospect and customer relationships | US | Contact info, conversation history |
| Google Analytics 4 | Website analytics | US | Cookie identifiers, usage events |
| Intercom | Inbound support and access requests | US | Contact info, ticket content |
| Stripe | Subscription billing and invoicing | EU and US | Billing contact info, payment metadata |
Notification of changes
We update this section when we add a new subprocessor or replace one. Customers on the Growth and Enterprise plans can subscribe to a notification list and will receive an email at least 30 days before a new subprocessor begins processing customer data, unless the change is required for security or legal reasons. To subscribe, write to team@sentohq.com from the email address you want notifications sent to.
If a customer reasonably objects to a new subprocessor on data protection grounds, the process for raising and resolving the objection is set out in our Data Processing Agreement.
International transfers
Sento is operated from the EU and we prefer EU-based infrastructure. Some subprocessors are based in the United States or other countries outside the EEA. Where personal data is transferred outside the EEA, we rely on the European Commission’s Standard Contractual Clauses, supplementary measures where appropriate, or an adequacy decision where one applies.
Retention
- Website analytics: up to 14 months in aggregated form
- Access request and prospect data: up to 24 months from last contact, then deleted unless we have an active contract or a legal reason to keep it
- Customer data processed under a contract: for the term of the contract, then deleted or returned per the Data Processing Agreement
- Billing and tax records: as required by applicable law, typically 7 years
Security
Sento is built AI-native from the ground up, and security is part of the architecture rather than something bolted on. In practice that means encryption in transit and at rest, role-based access inside the company, audit logging on production systems, principle-of-least-privilege for source connections, and OAuth scopes restricted to what each connector actually needs. Source credentials are stored encrypted and revocable.
Detailed security documentation is available to customers under NDA.
Your rights
If you are in the EEA, the UK, or another jurisdiction with similar law, you have the right to access the personal data we hold about you, correct it, delete it, restrict or object to processing, and receive it in a portable format. Where we process on consent, you can withdraw consent at any time.
To exercise any of these rights, write to team@sentohq.com. We respond within 30 days.
If your data is being processed by Sento because your employer or another company is a Sento customer, please contact that company first. We will help them respond.
You also have the right to complain to a supervisory authority. For Sweden that is the Integritetsskyddsmyndigheten (IMY).
Children
Sento is a B2B product. We do not knowingly collect personal data from anyone under 16. If we learn we have, we will delete it.
Changes to this policy
When we update this policy we will change the “Last updated” date at the top, and for material changes we will notify customers and people on our access list by email.
Contact
If you have any questions reach out to team@sentohq.com.