2.1 Account Information

• Name, email address, and contact information
• Clinic name, address, and business information
• Account credentials and authentication data
• Subscription and billing information

2.2 Patient Health Information

• Patient demographics and contact information
• Medical history and treatment records
• Appointment schedules and clinical notes
• Billing and insurance information
• Treatment plans and progress notes

2.3 Usage Data

• Log files and system usage statistics
• Feature usage and interaction patterns
• Device information and browser data
• Performance and error logs

2.4 Payment and Refund Information

• Payment method details (processed securely by third-party providers)
• Transaction history and billing records
• Refund requests and related correspondence
• Chargeback and dispute information
• Subscription changes and cancellation requests

We use the collected information for the following purposes:

• Service Provision: To provide and maintain our clinic management platform
• Account Management: To manage your account and subscription
• Patient Care: To facilitate patient care and treatment coordination
• Communication: To send important updates and notifications
• Support: To provide customer support and technical assistance
• Security: To protect against fraud and ensure platform security
• Improvement: To improve our services and develop new features
• Compliance: To comply with legal and regulatory requirements
• Payment Processing: To process payments, handle refunds, and manage billing disputes
• Financial Records: To maintain accurate financial records and transaction history

We do not sell, trade, or rent your personal information to third parties. We may share information in the following circumstances:

4.1 Service Providers

We may share information with trusted third-party service providers who assist us in:

• Hosting and infrastructure services
• Payment processing and billing
• Customer support and communication
• Data analytics and security

4.2 Legal Requirements

We may disclose information when required by law, including:

• Court orders or legal proceedings
• Government investigations
• Regulatory compliance requirements
• Protection of rights and safety

4.3 Business Transfers

In the event of a merger, acquisition, or sale of assets, your information may be transferred as part of the business transaction.

We implement comprehensive security measures to protect your information:

• Encryption: All data is encrypted in transit and at rest using industry-standard protocols
• Access Controls: Multi-factor authentication and role-based access controls
• Network Security: Firewalls, intrusion detection, and regular security audits
• Physical Security: Secure data centers with 24/7 monitoring
• Employee Training: Regular security training for all staff members
• Incident Response: Comprehensive incident response and recovery procedures

As a healthcare technology provider, we maintain HIPAA compliance through:

• Business Associate Agreements (BAAs) with covered entities
• Administrative, physical, and technical safeguards
• Regular HIPAA training for all employees
• Audit trails and access logging
• Breach notification procedures
• Patient rights management

We act as a Business Associate under HIPAA and are committed to maintaining the privacy and security of Protected Health Information (PHI).

We retain your information for as long as necessary to:

• Provide our services and maintain your account
• Comply with legal and regulatory requirements
• Resolve disputes and enforce agreements
• Maintain business records

Patient health information is retained in accordance with healthcare regulations and your clinic's retention policies. You may request deletion of your account data, subject to legal and regulatory requirements.

7.1 Financial Data Retention

Payment and refund-related information is retained for:

• Transaction Records: Minimum 7 years for tax and accounting purposes
• Refund Requests: 3 years after resolution for dispute resolution
• Chargeback Information: 5 years for fraud prevention and compliance
• Billing Correspondence: 3 years for customer service and legal purposes

You have the following rights regarding your personal information:

• Access: Request access to your personal information
• Correction: Request correction of inaccurate information
• Deletion: Request deletion of your personal information
• Portability: Request a copy of your data in a portable format
• Restriction: Request restriction of processing
• Objection: Object to certain types of processing

To exercise these rights, please contact us using the information provided below. We will respond to your request within 30 days.

8.1 Financial Data Rights

Regarding payment and refund information, you have the right to:

• Transaction History: Access your complete billing and payment history
• Refund Status: Request information about the status of refund requests
• Data Correction: Correct any errors in billing or payment information
• Dispute Resolution: Request review of disputed transactions or charges

Note: Some financial data may be retained longer than other personal information due to legal, tax, and accounting requirements. For more information about our refund process, please refer to our Refund Policy.

We use cookies and similar technologies to:

• Maintain your session and authentication
• Remember your preferences and settings
• Analyze usage patterns and improve our service
• Provide personalized content and features

You can control cookie settings through your browser preferences. However, disabling certain cookies may affect the functionality of our platform.