SENTINELTECH
Skip to main content

Sentinel Tech

Privacy Policy

LogoLogo

Effective Date: 3 January 2023
Last Updated: 28 February 2025

Introduction

At Sentinel Tech, we are committed to protecting the privacy and security of our clients and their guests. This Privacy Policy outlines how we collect, use, store, and protect personal and operational data in all our systems and services, including Sentec EMS, Sentec PMS, cloud solutions, and integrations.

Scope

This policy applies to all client and guest data processed through Sentinel Tech's products and services, including but not limited to HRIS, PMS, cloud server solutions, and integrated third-party tools.

Data We Collect

We only collect data necessary to deliver and improve our services. This may include:

  • Employee and guest profiles

  • Attendance and payroll data

  • Booking and operational data

  • User access logs and activity records

  • Support queries and system usage analytics

Data Usage

We use collected data to:

  • Operate and improve our products

  • Ensure service delivery and support

  • Meet legal and compliance obligations

  • Communicate system updates and alerts

Data Minimization & Retention

We adhere to the principle of data minimization: only collecting data required for specific purposes. Data retention periods are defined by the type of data and legal/regulatory requirements. Data no longer needed is securely deleted or anonymized.

Security Measures

Sentinel Tech implements strict technical and organizational safeguards including:

  • Encryption at rest and in transit

  • Role-based access controls (RBAC)

  • Secure software development practices (OWASP-based)

  • Audit logs and monitoring of sensitive activities

  • Regular penetration testing and vulnerability scans

Third-Party Access

We do not sell, trade, or rent personal data. Access to third-party providers (e.g., cloud or payment platforms) is tightly controlled, encrypted, and governed by strict contractual agreements ensuring GDPR or equivalent compliance.

User Rights

Clients and authorized users have the right to:

  • Access their stored data

  • Request data correction or deletion

  • Revoke access and request audit logs

  • Report any data concerns to our Privacy Officer

Incident Response

In case of any suspected data breach:

  • Sentinel Tech will act promptly under its Incident Response Plan

  • Affected clients will be notified within the legally required timeframe

  • Mitigation and investigation procedures will be immediately enacted

Compliance & Training

All employees undergo regular security and privacy training, and our systems comply with relevant legal and regulatory standards, including ISO 27001, GDPR, and local labor data regulations.

Contact

For questions or concerns about this Privacy Policy or data handling practices, please contact:

Data Privacy Officer