Legal

Privacy Policy

Last updated: June 2026

Overview

Sondaggio ("we," "us," or "our") is a product of Telio, LLC. This Privacy Policy describes how we collect, use, and protect information when you use the Sondaggio platform, including our website at sondagg.io, the patient survey experience, and the practice operator dashboard.

Information we collect

Practice operators (account holders)

When you create an account, we collect your name, email address, practice name, and billing information. We use this to operate your account, send transactional emails, and process payments via our payment processor.

Survey respondents (patients)

Patients interact with Sondaggio by texting a code to a practice-provisioned phone number and completing a web-based survey. We collect:

  • The phone number used to send the code (retained for session matching and Twilio compliance; not shared with the practice by default)
  • Survey responses (ratings, free-text answers) linked to an anonymous session token — not to a name, date of birth, or medical record number
  • Device type and browser for survey rendering purposes

We do not store or transmit Protected Health Information (PHI) as defined by HIPAA. Survey responses are not linked to patient identities in our systems. Enterprise customers requiring a HIPAA Business Associate Agreement (BAA) should contact us at [email protected].

How we use information

  • To provide and operate the Sondaggio platform
  • To deliver survey links via SMS (through Twilio)
  • To present satisfaction data and analytics to practice operators
  • To send transactional emails (account confirmations, billing receipts, low-score alerts you've configured)
  • To improve the platform through aggregate, anonymized usage data
  • To comply with legal obligations

We do not sell your information. We do not use patient survey responses for advertising purposes.

SMS and Twilio

Sondaggio uses Twilio, Inc. to send and receive SMS messages on behalf of practices. When a patient texts a code, that message passes through Twilio's infrastructure. Twilio's privacy policy applies to their handling of message data. We instruct Twilio to use patient phone numbers only for session-matching and survey delivery — not for marketing.

Data retention

Practice account data is retained while your account is active and for 30 days after cancellation, during which you can export your data as CSV or JSON. After 30 days, account data is deleted on a documented schedule. You may request earlier deletion by emailing [email protected]. Enterprise customers may negotiate custom retention windows.

Cookies and tracking

The Sondaggio marketing site uses no third-party tracking cookies. The operator dashboard uses a session cookie for authentication. We do not use cross-site advertising trackers.

Your rights

Depending on your jurisdiction, you may have rights to access, correct, or delete your personal information, or to object to certain processing. To exercise these rights, email [email protected]. We will respond within 30 days.

Changes to this policy

We may update this policy. Material changes will be communicated via email to account holders at least 14 days before taking effect. Continued use of Sondaggio after the effective date constitutes acceptance.

Contact

Questions about privacy? Email [email protected] or write to: Telio, LLC, Privacy, c/o Sondaggio.