1. Your data is encrypted
All data is encrypted at rest and in transit using AES-256
This means your recordings, transcripts, and notes are protected from interception or unauthorised access
2. Hosting and compliance
Data is stored securely in Australian-based servers
PractaLuma is aligned with:
Australian Privacy Principles (APP)
Health Records Act (Vic)
GDPR and HIPAA frameworks where relevant
3. Your content is not used to train AI
Recordings, notes, and client content are not shared with external AI services for training
AI models run in a secure environment and generate notes without storing your data
4. You have full control over your data
Delete sessions, recordings, or notes permanently from the platform at any time
PractaLuma staff cannot access your client data unless explicitly authorised for support
An audit trail logs all access to session content
5. Multi-layered user protection
Role-based permissions control what users can view, export, or edit
Two-factor authentication (2FA) is available and recommended for clinic teams
PractaLuma is regularly security-tested and updated