HealthIQ - AI-Powered Health Risk Detection & Guidance

Your privacy is critically important to us. This policy explains how we collect, use, protect, and share your personal health information in compliance with HIPAA and other applicable regulations.

Information We Collect

Personal Health Information (PHI)

• Medical history, symptoms, and health assessments
• Disease risk profiles and health scores
• Treatment preferences and care plans
• Insurance and mediclaim information

Identifying Information

• Name, email address, phone number
• Date of birth, gender, and demographic data
• Location data for physician matching

Technical Information

• IP address, browser type, device information
• Usage patterns and feature interactions
• Cookies and similar tracking technologies

How We Use Your Information

Primary Uses:

• Provide disease detection and risk assessment services
• Match you with appropriate healthcare providers
• Deliver personalized health recommendations
• Process mediclaim consultations and insurance queries
• Send health alerts and educational content

Secondary Uses:

• Improve our AI models and diagnostic accuracy
• Conduct research and analytics (de-identified data only)
• Comply with legal and regulatory requirements
• Detect and prevent fraud or security incidents

Data Protection & Security

We implement industry-leading security measures to protect your health information:

Encryption

AES-256 encryption at rest, TLS 1.3 in transit

Access Controls

Role-based access, multi-factor authentication

Monitoring

24/7 security monitoring and incident response

Auditing

Regular security audits and penetration testing

Information Sharing

We only share your information in the following circumstances:

• With Your Consent: When you explicitly authorize sharing with healthcare providers
• Service Providers: Trusted partners who assist in operations (under strict agreements)
• Legal Obligations: When required by law, court order, or regulatory authority
• Emergency Situations: To prevent serious harm to you or others

We NEVER:

• Sell your personal health information to third parties
• Share identifiable data for marketing without consent
• Use your data for purposes beyond what you've authorized

Your Rights

Under HIPAA and other privacy laws, you have the right to:

• Access: Request a copy of your health information
• Correction: Request amendments to inaccurate data
• Restriction: Limit how we use or share your information
• Accounting: Receive a log of disclosures
• Confidential Communication: Request communications via specific methods
• Deletion: Request deletion of your data (subject to legal requirements)

To exercise these rights, contact us at privacy@healthintel.com

Data Retention

We retain your information only as long as necessary to provide services and comply with legal obligations. Medical records are typically retained for 7 years from the last interaction, or as required by applicable law. You may request earlier deletion subject to legal and operational requirements.

Children's Privacy

Our services are not directed to children under 13. We do not knowingly collect personal information from children. If you believe we have inadvertently collected such data, please contact us immediately for removal.

International Data Transfers

Your information may be transferred to and processed in countries other than your country of residence. We ensure appropriate safeguards are in place, including Standard Contractual Clauses and adequacy decisions, to protect your data in compliance with applicable laws.

Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes via email or prominent notice on our platform. Continued use after changes constitutes acceptance of the updated policy.

Questions or Concerns?

If you have questions about this Privacy Policy or our data practices, please contact our Privacy Officer at privacy@healthintel.com or call +1 (555) 123-4567.