Medisync AI Inc. (“Company,” “we,” “us,” or “our”) is committed to protecting the privacy and security of your personal information. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you visit our website, use our Remote Patient Monitoring (RPM) platform, or engage with our services.
By using our services, you consent to the practices described in this Privacy Policy. If you do not agree, please refrain from using our services.
1. Information We Collect
A. Personal Information
We may collect personal information that identifies you, such as:
- Full Name
- Email Address
- Phone Number
- Date of Birth
- Address
- Payment & Billing Information
- Healthcare Provider Information
B. Health Information (Protected Health Information - PHI)
As a healthcare technology provider, we may collect Protected Health Information (PHI) under HIPAA regulations, including:
- Medical history
- Vitals (e.g., blood pressure, glucose levels, heart rate)
- Diagnoses and treatment plans
- Prescriptions and medication adherence
C. Automatically Collected Information
When you interact with our website or platform, we may automatically collect:
- Device Information: IP address, browser type, operating system
- Usage Data: Pages visited, time spent on pages, navigation patterns
- Cookies & Tracking Technologies: We use cookies and analytics tools (e.g., Google Analytics) to enhance user experience and monitor system performance
2. How We Use Your Information
We use your personal and health-related information to:
- 1. Provide Our Services:
- Facilitate Remote Patient Monitoring (RPM)
- Enable data tracking, vitals analysis, and proactive alerts
- Connect patients with healthcare providers and caregivers
- 2. Improve and Personalize User Experience:
- Customize patient engagement and AI-driven recommendations
- Enhance platform functionality and optimize features
- 3. Ensure Compliance & Security:
- Maintain compliance with HIPAA, GDPR, and Texas privacy laws
- Protect sensitive information through encryption, authentication, and access controls
- 4. Communication & Marketing (With Consent):
- Send appointment reminders, patient engagement alerts, and important health notifications
- Provide updates on new services or promotions (opt-in required)
- 5. Billing & Payment Processing:
- Process insurance claims and payments for RPM services
- Ensure compliance with reimbursement regulations
3. How We Share Your Information
We do not sell personal or health information. However, we may share data with:
A. Healthcare Providers & Care Teams
-
Physicians, nurses, and caregivers involved in patient care receive necessary PHI.
B. Third-Party Service Providers
-
Cloud storage providers, analytics tools, and IT service providers assist in secure data management.
- All third parties are required to comply with HIPAA and GDPR standards.
C. Legal & Regulatory Compliance
- We may disclose information if required by law, court order, or to comply with HIPAA, GDPR, or state regulations.
D. Business Transactions
-
In the event of a merger, acquisition, or sale, your data may be transferred under strict confidentiality agreements.
4. Data Security Measures
Medisync AI Inc. implements industry-standard security protocols to protect your data, including:
-
✔ Encryption: All PHI is encrypted during transmission and storage.
- ✔ Access Control: Only authorized personnel have access to PHI.
- ✔ Audit Logs: Continuous monitoring and logging of system access.
- ✔ Regular Security Assessments: Routine security audits to ensure compliance.
However, no system is 100% secure, and we encourage users to take precautions when sharing sensitive data.
5. Your Rights & Choices
A. Under HIPAA (U.S. Patients & Providers)
You have the right to:
- Request access to your PHI.
- Request corrections to inaccurate data.
- Obtain a record of disclosures.
- Restrict certain types of data sharing.
B. Under GDPR (EU Users & Providers)
For users in the European Economic Area (EEA), you have the right to:
- Request access, correction, or deletion of personal data.
- Object to data processing or request data portability.
- Withdraw consent for marketing communications at any time.
To exercise your rights, contact us at [email protected].
6. Data Retention Policy
-
PHI and patient records are retained as required by healthcare regulations (HIPAA mandates retention for at least 6 years).
- General user data is retained for as long as necessary to provide services, comply with legal obligations, and protect against fraud.
- After the retention period, data is securely deleted.
7. Children’s Privacy
Medisync AI Inc. does not knowingly collect data from children under 13 without parental consent. If we become aware of such collection, we will promptly delete the data.
8. International Data Transfers
If you are accessing our services from outside the United States, your data may be transferred to and processed in the U.S. under strict data protection agreements.
9. Updates to This Privacy Policy
We may update this Privacy Policy periodically. Changes will be posted on this page with the “Last Updated” date. If significant changes occur, we will notify you via email or in-app notifications.
10. Contact Us
If you have any questions regarding this Privacy Policy, data protection, or your rights, please contact us:
Medisync AI Inc. | HIPAA & GDPR Compliant
This Privacy Policy ensures compliance with HIPAA, GDPR, and Texas privacy laws, while transparently outlining how Medisync AI Inc. handles, protects, and processes user data.
