Privacy Policy

Privacy Policy

Data in this application of Credence Digital Health can be created by your healthcare providers at Credence Digital Health and by yourself (the patient) after logging into the application with your authorized user account. Information that is collected as you use our web patient portal and mobile application includes the following:

1. Personal information: Personal information includes name, email address and/or phone number that you provide at signup. It also includes your profile picture (should you choose to add it to your user account), address and other personally identifiable information that you may choose to add to your user account profile.

2. Personal Health Information: Personal health information about patients users, that patient users themselves or authorized employees of Credence Digital Health enter into the Personal Health Record of a patient, including age, gender, known health conditions, medications, allergies, vaccinations, history of surgeries or procedures, goals, health journal entries and data that you enter into your health trackers either manually or by syncing with your health monitoring devices and/or your other health or fitness accounts. Syncing of data from your health or fitness accounts from external third party systems including but not limited to Google Fit and Apple Health app, requires you to authorize access to sync data into your health record. It also includes medical reports and files that you choose to upload into your health profile.

3. Operations Data: In order to enhance your usage experience and to ensure secure audit mechanisms, the application uses cookies, server logs and other similar mechanisms to enable certain functionality, improve services and monitor service usage. The log data includes context usage, location, device type, operating system, browser, date and time.

4. Cookies Usage Policy: Cookies may be used to save user preferences, preserve session settings, help auto-authentication of frequently used services if required by your settings and to enable other similar functional requirements. You may use browser settings to disable cookies when using our web services, however it may result in some of the features and services of this application not functioning properly. 

5. Data Storage Location: All data is stored only on HIPAA and GDPR compliant cloud infrastructure on Amazon Web services. All data transmission and storage are AES encrypted. No data is stored on your mobile devices. The cloud infrastructure is protected by a secure firewall.

6. Access: Data in your personal health records will be accessible to and modifiable by authorised healthcare providers of Credence Digital Health, solely for the purpose of providing you with healthcare services.

Use of Information

The personal and health information added through this application, through use of its services by patients and healthcare providers of Credence Digital Health will not be shared, disclosed or displayed to anyone other than authorized employees of Credence Digital Health. They will be able to update personal health information of their own patients by updated the patient health profile, uploading medical reports, adding review notes, health goals, monitoring feedback relevant as part of the consultation services used by the patients.

Credence Digital  Health is fully authorized to terminate patient user accounts at any time and such patients will no longer have further access to their personal health information stored in the application storage in event of that happening. Whether or not to share that information with the patient user before termination of the patient user account is the prerogative of Credence Digital Health. You have the right to request deletion of your user account with Credence Digital Health. Your account and all data in it will then be completely deleted. We reserve the right to maintain billing data only for our financial records. In the event of any breach of your personal health data, you will be notified.

Contact Information: The services platform will send you communications (email and other notifications), as per your notification settings, as part of essential functioning of services that you may avail, such as appointment booking information, alerts related to reviews and consultations by your healthcare providers. At time of registration you will be required to verify your email address and/or phone number. Your contact information may also be used for customer support services, should you choose to avail of them. In addition, we may use your contact information to provide you with information about our services. If you decide at any

time that you no longer wish to receive such information or communications from us, please change applicable notification settings in your account. Your contact information is not shared with any third-party.

Anonymized data: Credence Digital Health may analyze anonymized and aggregated collected through the services, for purposes of evaluating healthcare outcomes, healthcare requirement patterns and to measure the effectiveness of services and content. Such anonymized and aggregated information is not considered as personal information. You are responsible for maintaining the confidentiality of your password and account information. You are responsible for all activities that occur in your account and you agree to notify Credence Digital Health immediately of any unauthorized use of your account. Credence Digital Health is in no way responsible for any loss that you may incur as a result of any unauthorized use of your

user account and password. The technology vendor supporting this platform is not responsible for the privacy policy compliance of any users who have access to data in it.

Disclosure of Information

We may disclose any information to government or law enforcement officials if we believe doing so is required to comply with law enforcement and legal process; to prevent or stop any illegal, unethical, or legally actionable activity; to protect your, our or others rights and safety. Credence Digital Health does however reserve the right to deactivate or delete accounts of any user found to be in violation of our Terms of Use.

Transmission and Storage Security

All data is stored only in the servers of our technology vendor on the highly secure Amazon Web Service platform (which is compliant with HIPAA regulations). Necessary measures in providing secure transmission of personal health information before it is transferred across the Internet from your personal computer or devices are ensured. However, you should be aware of possible

risk involved in transmitting information over the Internet as no data transmission can be  guaranteed to be 100% secure and of risk that others could find a way to thwart our security systems. As a result, while we strive to protect your personal information, we cannot ensure or warrant the security and privacy of personal information you transmit to us, and you do so at your own risk.

Restriction on the Basis of Age

All users of the patient portal and mobile app of Credence Digital Health are expected to be above 18 years of age. Parents, caregivers/guardians and healthcare providers are allowed to provide and store personal information about others, including minors and children. Any user providing, storing or submitting information on behalf of a child/person under guardianship assumes full responsibility over the submission, use, and transmission of such information.

Changes to this Policy

Please note that this Privacy Policy may change from time to time as we continue to offer evolve our services. In the event of any changes in our Privacy Policy, the updated version will be posted here and take effect from the moment of posting. The above mentioned terms are applicable as long as you are a registered patient of Credence Digital Health using Credence Digital Health's web patient portal and mobile application.