Ai Logo

    Privacy Policy

    Last Updated: 20th January 2025

    ScribeThis ("we," "us," "our") is committed to protecting your privacy and safeguarding the confidentiality of your personal and sensitive data. This Privacy Policy explains how we collect, use, disclose, and safeguard information collected from users ("you") of our website (scribethis.com), services, and platform. By accessing our services, you agree to the terms of this Privacy Policy. If you do not agree, please discontinue use of our services.

    1. Information We Collect

    Personal Information

    We may collect personally identifiable information ("Personal Information") directly from you when you:

    • Create an account
    • Request a demo
    • Subscribe to our services
    • Contact us for support

    Examples of Personal Information:

    • Name
    • Email address
    • Phone number
    • Practice or organization name

    Sensitive Health Information

    When you use ScribeThis to transcribe medical consultations, we may process sensitive health-related data ("Sensitive Information") such as:

    • Patient medical history
    • Treatment plans
    • Examination notes

    Automatically Collected Information

    We also collect non-personal data automatically through your interaction with our website or services. This may include:

    • Device information (e.g., IP address, browser type)
    • Usage data (e.g., pages visited, session duration)

    2. How We Use Your Information

    • Provide Services: Transcribe and process medical consultations securely and accurately.
    • Improve Services: Enhance functionality through analytics, user feedback, and system updates.
    • Support Communication: Respond to inquiries and provide technical support.
    • Ensure Compliance: Maintain adherence to healthcare privacy regulations (e.g., HIPAA, GDPR, PIPEDA, DISHA).
    • Marketing (With Consent): Send you promotional materials and updates, if you have opted in.

    3. Data Security & Storage

    We implement robust security measures to protect your information, including:

    • Encryption: Data is encrypted in transit (e.g., TLS) and at rest (AES-256).
    • Access Control: Restricted access to authorized personnel only.
    • Secure Servers: Data is stored in secure servers, compliant with relevant standards and regulations.
    • Regular Audits: Performing periodic reviews of storage systems to detect and address vulnerabilities.
    • Data Minimization: We only collect and retain the data necessary for the delivery of our services.

    Data Residency:

    Where applicable, data is stored in data centers located within your jurisdiction to meet local compliance requirements (e.g., Australian data centers for Australian users).

    4. Data Breach Response Plan

    In the event of a data breach, ScribeThis will:

    • 1. Immediate Action:
      • Containment: Isolate affected systems to prevent further unauthorized access.
      • Assessment: Determine the nature and scope of the breach.
    • 2. Notification:
      • Inform affected individuals promptly if their personal data has been compromised.
      • Notify relevant regulatory bodies as required by applicable laws.
    • 3. Investigation and Remediation:
      • Conduct a thorough investigation to identify the cause of the breach.
      • Implement corrective measures to prevent future occurrences.
    • 4. Post-Incident Review:
      • Evaluate the effectiveness of the response and update our security policies accordingly.

    5. Sharing Your Information

    We do not sell, rent, or trade your information. However, we may share your data under the following circumstances:

    • With Service Providers: To trusted third-party vendors who assist in service delivery (e.g., cloud storage, analytics tools). All such vendors are bound by strict confidentiality agreements.
    • Legal Requirements: If required to comply with a legal obligation or protect the rights, property, or safety of ScribeThis, its users, or others.
    • With Your Consent: Where you have explicitly agreed to share your data for specific purposes.

    6. Compliance with Healthcare Privacy Laws

    ScribeThis adheres to the following regulations to ensure your data is handled responsibly:

    • HIPAA (US): Ensures the protection and confidentiality of Protected Health Information (PHI).
    • PIPEDA (Canada): Governs how we collect, use, and disclose Personal Health Information (PHI).
    • DISHA (India): Aligns with Indian regulations for healthcare data privacy.
    • GDPR (EU): Provides robust protection for personal data of individuals in the European Union.

    7. Retention of Data

    We retain Personal and Sensitive Information only as long as necessary for:

    • Service delivery
    • Compliance with legal and regulatory requirements
    • Internal analytics to improve our platform

    Upon your request, or when no longer needed, data will be securely deleted or anonymized.

    8. Your Privacy Rights

    Depending on your jurisdiction, you may have rights including:

    • Access: Request access to the data we hold about you.
    • Correction: Update or correct inaccurate information.
    • Deletion: Request deletion of your personal data.
    • Portability: Obtain a copy of your data in a structured, commonly used format.
    • Withdraw Consent: Revoke your consent for specific uses of your data.

    To exercise these rights, please contact us at [email protected].

    9. Cookies and Tracking Technologies

    We use cookies and similar technologies to:

    • Improve website performance
    • Provide personalized content
    • Analyze user behavior

    You can manage cookie preferences through your browser settings.

    10. Children's Privacy

    Our services are intended for use by professionals in the medical field. We do not knowingly collect data from children under 13. If we become aware of such data, it will be promptly deleted.

    11. Third-Party Links

    Our website may contain links to third-party websites. We are not responsible for their privacy practices and encourage you to review their policies.

    12. Updates to This Privacy Policy

    We may update this Privacy Policy periodically to reflect changes in our practices or legal requirements. The revised policy will be posted on this page with an updated date.

    13. Contact Us

    If you have questions, concerns, or requests related to this Privacy Policy, please contact us:

    Thank you for trusting ScribeThis with your data. We are committed to protecting your privacy and ensuring your confidence in our services.