Compliance
Last updated 5 May 2026. Consult your own counsel for jurisdiction-specific advice.
What Reverbe is (and isn’t)
Reverbe is a software platform for hypnotherapists and transformation practitioners. It is not a healthcare provider, not a covered entity, and not classified as a medical device. We don’t make medical claims or diagnose anyone.
Practitioner responsibility
Practitioners are responsible for:
- Holding valid credentials and insurance for the services they deliver in their jurisdiction.
- Screening clients for contraindications (active psychosis, untreated epilepsy, current severe depression, etc.). Reverbe’s intake form flags common contraindications, but the Practitioner makes the final clinical judgement.
- Reviewing and approving every AI-drafted script before audio is generated. Reverbe generates no audio without explicit Practitioner approval (enforced by the platform via a content-hash binding at the moment of approval).
- Following local consumer protection, advertising, and data protection law.
Data protection
See our Privacy Policy and Data Processing Addendum for detail. In summary:
- GDPR / UK GDPR / CCPA compliant data handling
- Sensitive fields encrypted at rest (AES-256-GCM)
- Per-tenant data isolation enforced at the storage and database layer
- Audit log of every sensitive action, retained 13 months
- Automated deletion / anonymisation on Practitioner request
AI and IP boundaries
Reverbe uses third-party AI providers under zero-retention contracts, your inputs are not used to train any external models. Voice cloning is opt-in and gated by an explicit Practitioner consent recording, retained as a legal record. The full list of providers we use to deliver the service is in our Data Processing Addendum.
Reverbe is not affiliated with Marisa Peer or RTT®. Our prompts and output are designed to avoid trademarked or proprietary methodology language.
Industry standards
We don’t (yet) hold formal certifications like SOC 2 or ISO 27001. We follow their controls in spirit: least-privilege access, secret rotation, audit logging, encrypted storage, multi-tenant isolation. Formal certification is on the roadmap as we grow.
Reporting a security issue
Email hello@reverbe.app with details. We aim to respond within 48 hours.