Privacy Policy

Last updated: March 2026 · SentiHome (operated by Olimp AI) · hello@sentihome.app

    🔒 TL;DR: Your home data stays in your account. We don't sell it, share it with advertisers, or use it to train AI models. You own your data.
  

1. Who we are

SentiHome is a smart home AI platform operated by Olimp AI. We provide AI-powered monitoring, energy analytics, and automation for smart home devices (Shelly, Ring, and compatible systems). Contact: hello@sentihome.app

2. What data we collect

Account data: email address, name (from registration or Google OAuth)
Home configuration: home name, address, device names and positions
Device telemetry: on/off status, energy consumption, sensor readings (temperature, motion)
Usage data: interactions with the dashboard, chat messages sent to the AI agent
Technical data: IP address, browser type, session timestamps (for security and debugging)

3. How we use your data

To operate the SentiHome service (monitoring, alerts, energy reports)
To power the AI agent — your context snapshot is processed by LLM (Claude/AWS Bedrock) to generate responses
To send you alerts and morning briefings via your chosen channel (Telegram, email)
To improve service reliability and debug issues

We do NOT use your home data to train AI models. LLM calls are transient — no data is retained by the model provider beyond the session.

BYOK (Bring Your Own Key): You can provide your own AI API key (OpenAI, Anthropic, Groq). When BYOK is enabled, your key stays in your account config and is never shared with SentiHome servers beyond what's needed for inference calls. This gives you full control over which AI provider processes your data.

4. Data storage

Your data is stored in AWS (eu-central-1, Frankfurt). Device telemetry is stored in DynamoDB. Credentials and API keys are encrypted at rest using AWS KMS (SSM Parameter Store SecureString).

5. Third-party services

AWS Bedrock (Anthropic Claude): processes AI queries. Data is not retained beyond the API call. AWS Bedrock Privacy FAQ →
Google OAuth: used for sign-in. We receive your email and name only. Google Privacy Policy →
Telegram: used for alert delivery if you connect a bot. Your Telegram chat ID is stored encrypted.
Shelly Cloud: your Shelly auth key is stored encrypted and used solely to fetch device data on your behalf.

6. Data retention

Device status: last known state (indefinite, updated on change)
Energy history: 90 days rolling window
Chat logs: 30 days (used for context, then purged)
Account data: retained while account is active. Deleted within 30 days of account deletion request.

7. Your rights (GDPR)

If you are in the EU/EEA, you have the right to:

Access, correct, or delete your personal data
Export your data in machine-readable format
Withdraw consent at any time
Lodge a complaint with your national data protection authority

To exercise these rights, email hello@sentihome.app. We respond within 30 days.

8. Cookies

SentiHome uses only essential cookies (authentication session token stored in localStorage). No advertising or tracking cookies. No third-party analytics (no Google Analytics, no Hotjar).

9. Security

All data is transmitted over HTTPS. API keys are encrypted at rest (AES-256 via AWS KMS). We follow AWS security best practices. If you discover a security issue, please report it to security@sentihome.app.

10. Changes to this policy

We may update this policy. We will notify you via email and in-app notification for material changes. The "Last updated" date at the top reflects the current version.