Definition
Professional confidentiality is the obligation of the professional to keep confidential all information that the client communicates in the context of the therapeutic, coaching, or consulting relationship. This obligation has a dual nature: ethical (confidentiality is the foundation of the trust that makes the work possible) and legal (most regulatory frameworks establish it as a duty with legal consequences in case of breach). When a technological tool processes session content, professional confidentiality extends to that tool.
How it's used
The professional who uses a session assistance platform transfers to the platform provider the responsibility to protect data with the same level of care that would be required of the professional themselves. This implies: encryption of audio and transcriptions in transit and at rest, strict access controls (only the authorized professional and client can view the session), not using data to train third-party models without explicit consent, and retention policies that limit the storage time of sensitive data.
The limits of professional confidentiality are also relevant: confidentiality yields when there is imminent risk of harm to third parties or to the client themselves (duty to warn), when there is a legal mandate (court order), or when the client explicitly authorizes disclosure.
When to apply
Professional confidentiality is the operational framework for any professional who works with sensitive client information: psychologists, social workers, certified coaches, HR consultants with access to personal information. In the technology realm, it applies to any provider that processes session data.
Historical origin
Professional confidentiality has roots in the Hippocratic Oath ("I will keep silence about what ought to be kept secret"). In modern legal contexts, it was codified in the codes of ethics of health professions during the 20th century and subsequently incorporated into national and international personal data protection legal frameworks.
How CauceOS supports it
CauceOS is designed from its architecture to respect professional confidentiality: transcriptions belong to the professional and client, not CauceOS; access to a session's data is restricted by design to the parties of that session; session data is not used to train language models; and retention policies allow the professional to delete a session's data at any time.
Related terms
- Informed consent — explicit consent is the first step before processing session data
- Data retention — policy on how long transcriptions are stored
- Crisis detection — one of the ethical limits of professional confidentiality
References
- Koocher, G. P., & Keith-Spiegel, P. (2008). Ethics in Psychology and the Mental Health Professions. Oxford University Press.
- American Psychological Association. (2017). Ethical Principles of Psychologists and Code of Conduct.
- Bersoff, D. N. (Ed.). (2008). Ethical Conflicts in Psychology. American Psychological Association.