Privacy Policy
Effective Date: January 1, 2025
Last Updated: January 1, 2025
HIPAA Compliance Notice: ACLS AI is designed to be HIPAA compliant for healthcare professionals. We implement appropriate safeguards to protect patient health information (PHI) and maintain the confidentiality, integrity, and availability of all electronically protected health information.
1. Information We Collect
1.1 Personal Information
We may collect the following types of personal information:
- Account information (email address, username)
- Device information (device type, operating system, app version)
- Usage analytics (app interactions, feature usage, session duration)
- Crash reports and diagnostic information
1.2 Health Information (PHI)
As a healthcare application, we may process:
- ECG images uploaded for analysis
- ACLS session data and timing
- Clinical notes and session summaries
- Patient identifiers (only when explicitly provided by healthcare professionals)
1.3 Technical Information
- IP address (for security and service delivery)
- App performance metrics
- Error logs and debugging information
2. How We Use Your Information
2.1 Primary Purposes
- Provide ECG analysis and ACLS guidance
- Maintain and improve app functionality
- Process subscription and payment information
- Provide customer support
- Ensure app security and prevent fraud
2.2 Analytics and Improvement
- Analyze usage patterns to improve user experience
- Develop new features based on user needs
- Monitor app performance and stability
- Conduct quality assurance and testing
3. Data Security and Protection
3.1 HIPAA Safeguards
- Administrative Safeguards: Access controls, workforce training, incident response procedures
- Physical Safeguards: Secure data centers, equipment controls, media disposal
- Technical Safeguards: End-to-end encryption, access logging, automatic logoff
3.2 Encryption and Storage
- All data is encrypted in transit using TLS 1.3
- Data at rest is encrypted using AES-256 encryption
- ECG images are processed locally when possible
- Cloud storage utilizes HIPAA-compliant infrastructure
4. Data Sharing and Disclosure
4.1 No Sale of Personal Information
We do not sell, rent, or lease your personal information to third parties.
4.2 Limited Sharing
We may share information only in the following circumstances:
- Service Providers: HIPAA-compliant vendors who assist in app operation
- Legal Requirements: When required by law or court order
- Emergency Situations: To prevent harm or protect safety
- Business Transfers: In case of merger or acquisition (with continued privacy protection)
5. Data Retention
5.1 Retention Periods
- Account Information: Retained while account is active plus 3 years
- ECG Data: Retained for 6 years (consistent with medical record retention)
- Session Data: Retained for 3 years for quality improvement
- Analytics Data: Aggregated and anonymized after 1 year
5.2 Data Deletion
You may request deletion of your personal information at any time. PHI will be securely destroyed according to HIPAA requirements.
6. Your Rights and Choices
6.1 HIPAA Rights
- Right to access your PHI
- Right to request amendments to PHI
- Right to an accounting of disclosures
- Right to request restrictions on use/disclosure
- Right to file complaints
6.2 General Privacy Rights
- Access and download your data
- Correct inaccurate information
- Delete your account and associated data
- Opt out of marketing communications
- Data portability (where technically feasible)
7. International Data Transfers
If you use our app outside the United States, your information may be transferred to and processed in the United States. We ensure appropriate safeguards are in place for international transfers, including:
- Standard contractual clauses
- Adequacy decisions where applicable
- Additional security measures as required
8. Children's Privacy
ACLS AI is designed for healthcare professionals and is not intended for children under 13. We do not knowingly collect personal information from children under 13.
9. Changes to This Privacy Policy
We may update this Privacy Policy from time to time. We will notify you of any material changes by:
- Posting the new Privacy Policy in the app
- Sending an email notification (if you have an account)
- Providing notice through the app interface
10. Contact Information
Privacy Officer
Email: privacy@aclsai.com
Address: [Company Address]
Phone: [Phone Number]
HIPAA Compliance Officer
Email: hipaa@aclsai.com
General Support
Email: support@aclsai.com
Support Portal: ACLS AI Support
Complaints: If you believe your privacy rights have been violated, you may file a complaint with us at privacy@aclsai.com or with the Department of Health and Human Services Office for Civil Rights.
This Privacy Policy was last updated on January 1, 2025 and is effective immediately.