Privacy Policy.
This Privacy Policy encompasses the collection, utilization, and disclosure of information pertaining to identifiable individuals and data that can be employed to identify a specific person ("Personal Data"). It outlines the methods through which Reteta processes and safeguards your data.
You own and control when your data is collected and how it is shared. We only collect and share personal health data with your consent. We use privacy by design principles to limit the data we collect and to give you notice in the App when you have choices to share data. If you change your mind, you can opt to delete such data at any time.
We never sell your Personal Data. We believe this information to be a vital part of our relationship with you and we value the trust you put in us. Furthermore, our business model does not involve making money from selling data that can identify you.
In compliance with policies and regulations, we adhere to guidelines governing the sharing of data with third-party service providers.
We employ industry-leading encryption standards and safeguard techniques to ensure that your data is securely stored and safely transmitted from your devices to our servers.
What data is collected.
When using our services, we may collect Personal Data about you and your patients, as well as other information. This is highlighted below:
Personal Data of practice users:
These refer to our medical practice clients. We collect certain Personal Data such as contact information, email address and registration information from the Practice User employees that use our service on behalf of the Practice User.
Conversation and Health Information:
When a health conversation is recorded, the audio is collected, processed and turned into a readable transcript. This transcript can contain information about patients such as the symptoms they face, as well as any Personal Data mentioned during the conversation. This transcript will also contain metadata such as the patient and doctor names, any tags to help organize transcripts, and information about mentioned medical terms such as potential diseases.
Location:
For specific functions, like locating health professionals in your vicinity, you have the option to share your location. We will inform you and obtain your consent before gathering this information.
Patients:
Information such as names, contact information, symptoms and diseases is collected when transcribing and saving audio recordings. This is done for organizational purposes, making it easier to group and search for cases later on.
Personal data that you provide through services:
We collect personal data when you voluntarily provide such information. This is collected when you contact us with inquiries, respond to our surveys or use certain services. An example is us asking for your name, the medical practice client that you are affiliated with (such as your hospital/clinic name), the phone number/email address you contacted us with and so on.
Analytical and passively collected data:
We collect data about how you use our services through cookies, your IP address, device information, click history when using the service, OS and browser information and other such data. This information is collected from your phone or web browser as you interact with web and mobile apps and helps us improve your experience with the Services.
Non-identifiable data:
We receive, collect and store certain personally non-identifiable information such as the total number of visitors to our Site or App downloads, the number of visitors to each page of our Site, and the domain names of our visitors’ Internet service providers. It is important to note that no Personal Data is available or used in this process. Such information, which is collected passively using various technologies, cannot presently be used to specifically identify you.
Use of data and other information.
Personal Data is processed and used to provide our services to you and to improve these as well. Some examples include:
Processing Recordings:
We Use ML and AI to process audio recordings and create a readable transcript that includes relevant and important medical mentions.
Account Management:
Your name, email address, mobile number and other access information is used to manage your account, contact you and respond to your requests and queries.
Customer Research:
In an ongoing effort to better understand and serve our users, Reteta conducts research on customer demographics, interests, and behavior using provided personal data.
Patients:
Information such as names, contact information, symptoms and diseases is collected when transcribing and saving audio recordings. This is done for organizational purposes, making it easier to group and search for cases later on.
Analytics:
We use analytical and passively collected data to gain insights on how you use our services, to test and assess features and tools, ensure that our services are working properly and provide protection from malicious users. This data is also used to improve our services, troubleshoot errors, perform data analytics, develop new products and refine our services.
Promotions:
We utilize your contact details and data on your usage of the services to send promotional messages tailored to your specific interests. These communications are designed to enhance your engagement with and benefits from the services. This includes updates on new features, requests for surveys, information about events, and other content we believe you may find interesting. Additionally, we keep you informed about new product offerings, promotions, and contests.
Safety and Security:
We use personal data to promote the safety and security of Reteta, our users and other parties. For example, to protect against fraud and abuse, respond to a legal request or claim, conduct audits, and enforce our terms and other policies.
Disclosure of your Personal Data:
We do not sell your personal data as we believe this information to be a vital part of our relationship with you and we value the trust you put in us. There are, however, certain circumstances in which we may share your Personal Data with certain third parties without further notice to you, such as:
- As a service provider for our medical practice clients, we gather and analyze data on their behalf. In this capacity, Reteta processes data as directed by the customer, in accordance with our service agreement and Business Associate Agreement with them.
- At times, we may enlist third-party assistance to carry out tasks on our behalf, requiring the sharing of personal data with them to facilitate specific services. Unless specified otherwise, these third parties are not authorized to utilize the shared personal data for purposes beyond the necessary tasks and services provided on our behalf.
- We may also share your Personal Data with our Related Companies for purposes consistent with this Privacy Policy.
- Reteta might reveal your personal data if compelled by law or in the sincere belief that such disclosure is essential to
Cookies.
A cookie is a text file stored on a user's device by a web browser, containing information about the user's online activities on a specific website. It is commonly used to enhance user experience, store preferences, and facilitate website functionality.
Our cookies enhance the functionality of our services and enable more accurate analysis of service usage. For example, a cookie on your browser may allow you to access our services without repeatedly entering a password during a single visit. We only collect personal data through cookies with your explicit permission. Refer to your browser's "help" section for instructions on receiving notifications for new cookies and disabling them, though we recommend keeping cookies enabled for optimal use of service features.
Data Sharing.
We do not engage in the sale of user’s personal data. Our policy dictates that data sharing occurs exclusively with user consent or when legally permissible under specific circumstances.
User Requirements:
Data sharing takes place when a user explicitly directs, such as when sharing a recording with another user on our platform. Importantly, users have the autonomy to revoke access to their data from other users at any time.
Third-Party Service Providers:
We've established partnerships with third-party organizations to enhance the services we offer to our users. We do not share Personal Data with third-party partners until the user consents. Furthermore, these third parties are strictly bound by limitations on the use and sharing of your personal data; they can only access and utilize the data as necessary for the specific services they are engaged in.
Our collaboration with third parties is primarily focused on facilitating various aspects of our services, such as database management, web analytics, customer support, cloud storage, data analysis, surveys, marketing, and maintenance.
Compliance with the Law:
We may disclose the information we collect in order to comply with the law, judicial proceedings, court orders, or legal processes. We notify the user in such circumstances when their information is accessed for legal process such as any court orders or subpoenas.
Protection against Fraud:
Information is disclosed for the purpose of investigating any illegal or fraudulent activities that pose threats to the safety of individuals, as well as for addressing violations of our Terms or Privacy Policy, and in connection with any ongoing litigation involving our organization.
Business Transfers:
In the event of a corporate sale, merger, or reorganization, our assets may be transferred to another company, including the personal data of our users. Prior to any such transfer, users will be notified, ensuring transparency and providing them with the opportunity to make informed decisions regarding their personal information
Data Safety.
Reteta takes responsibility for protecting Personal Data from loss, misuse, and unauthorized access. Information is consistently transmitted through secure channels. Employing industry-leading encryption standards, data is encrypted both in transit and at rest to ensure the utmost protection for your information. Throughout read-and-write operations over the internet, data remains secure. Additionally, strict internal access-control policies are in place to prevent any unauthorized access and uphold the privacy of your data.
Access to Storage and Deletion of Data.
Users have the ability to access and update their personal data by modifying their profile information. Any alterations or deletions made to the information will be temporarily stored in the cache for a specific duration. Please note that all personal data is securely stored in the cloud.
The information linked to a user's account is maintained until the user decides to delete their account. This can be done conveniently through the Settings menu or by contacting our Support. In the event of an account deletion, the associated information is promptly erased within 24 hours. It is important to highlight that the organization may retain certain account information for legal purposes.
Management of Medical Practice Information.
As a service provider, when users use the services provided by Reteta, they may share personal information related to their health. Some information comes from healthcare providers that are subject to laws and regulations under HIPAA and HITECH.
We process data consistent with the service agreement and Business Associate Agreement. When Reteta receives Protected Health Information (PHI), it does so as a "Business Associate" of the healthcare provider. This means there's an agreement in place that restricts Reteta from using or sharing the health information in ways not allowed by the healthcare provider and requires us to implement confidentiality, integrity, and availability of PHI.
Security.
Reteta ensures it does not knowingly gather Personal Data from individuals under the age of 13. If you are under 13, kindly avoid submitting any Personal Data through the Services. We encourage parents and legal guardians to oversee their children's internet activities and reinforce our Privacy Policy by instructing their children not to provide Personal Data on the Services without permission. If you have reason to believe that a child under 13 has provided Personal Data to the Company via the Services, please contact us, and we will make diligent efforts to erase that information from our databases.
Changes to this Policy.
Reteta reserves the right to modify this privacy policy as deemed necessary, driven by factors such as evolving legal requirements, technological advancements, or enhancements to our services. In the event of any alterations, we are committed to informing our users promptly. Notification methods may include, but are not limited to, direct communication via email or prominent announcements on our website. We aim to keep users well-informed about any changes that may impact the handling of their personal data, thereby maintaining a high standard of user trust and privacy protection.
