Skip to content
Denial OS
Start free

Privacy policy

Your data. Your patients. Your practice.

Last updated: May 9, 2026. We wrote this in plain English first; the formal sections follow. If anything is unclear, email privacy@twinflamegroup.com.

The short version

Denial OS exists to help your practice fight denied insurance claims. To do that, we process patient identifiers, EOB narratives, and payer responses. We treat that information as Protected Health Information (PHI) under HIPAA. We encrypt the narrative fields with libsodium before they ever hit the database. We never sell your data. We never use your patients' PHI to train models on anyone else's behalf.

What we collect

  • Account info — your name, work email, practice name, role.
  • Claim and denial data you upload — EOB text, denial reason codes, payer names, claim IDs, patient identifiers.
  • Letter narratives generated through our Claude proxy.
  • Usage telemetry — pages visited, errors thrown, features used. No third-party advertising trackers.
  • Billing info — handled by Stripe. We never see card numbers.

How we use it

  • To generate appeal letters and run the appeals workflow.
  • To show you outcomes, win rates, and recovered dollars.
  • To improve aggregate denial-pattern intelligence (population- level only — no individual patient outcomes are exposed across practices).
  • To send you product updates you opt into.

Who we share it with

  • Anthropic — for letter generation. Server-to-server, no browser exposure. PHI minimized in the prompt envelope.
  • Supabase — our database and storage provider. BAA in place.
  • Stripe — payment processing only.
  • Resend — transactional email.
  • Phaxio — fax submission of letters you choose to send.
  • No advertising partners. No data brokers. Ever.

Encryption posture

Narrative PHI is encrypted with libsodium crypto_secretbox (XSalsa20+Poly1305) before insert. Master key lives in our hosting provider's environment, never in Postgres. A database compromise yields ciphertext only. See the Security page for the full threat model.

Your rights

You can export, correct, or delete your practice's data at any time from Settings → Data Export or Settings → Danger Zone. Or email privacy@twinflamegroup.com and we'll do it for you within 30 days.

HIPAA & BAAs

Denial OS operates as a Business Associate under HIPAA. A Business Associate Agreement is available on request — see the BAA template page or email legal@twinflamegroup.com.

Retention

Active accounts: data is retained for the life of the account. Cancelled accounts: encrypted backups purge within 30 days. Audit logs retained 7 years per HIPAA.

Children

Denial OS is not directed to children under 13. We do not knowingly collect data from children. If you believe a child's data has been processed in error, email privacy@twinflamegroup.com and we will purge it immediately.

Changes

We'll post the new version here and email account owners at least 14 days before any material change takes effect.

Contact

Twin Flame Group, Inc.
Sacramento, California
privacy@twinflamegroup.com