Skip to content

Privacy Policy

Last Updated: 20 January 2025

At CareIO Inc. ("we," "our," or "us"), we are committed to protecting and respecting your privacy. This Privacy Policy outlines how we collect, use, disclose, and safeguard your personal and healthcare data when you use our Software-as-a-Service (SaaS) platform (the "Platform"). By using the Platform, you agree to the collection and use of information in accordance with this policy.

This Privacy Policy applies to all users of the Platform, including healthcare providers, organizations, and other individuals who access or use our services.

1. Information We Collect

We collect and process various types of personal and healthcare-related information, depending on how you use the Platform.

a. Personal Information:
  1. Account Information: When you create an account, we collect personal details such as your name, email address, phone number, job title, and billing information.
  2. Usage Data: We collect data about how you interact with the Platform, including logs of your activities, device information, and other usage statistics.
b. Healthcare Data:
  1. Protected Health Information (PHI): If you are a healthcare provider or organization using the Platform, you may upload or input PHI, including patient records, treatment information, diagnosis details, prescriptions, and other sensitive health data.
  2. Medical Records: This may include medical history, treatment plans, lab results, images, and other health-related data as required by your use of the Platform.

2. How We Use Your Information

We use the information we collect for various purposes, including:

  1. Providing Services: To operate and maintain the Platform, including managing user accounts, storing, processing, and analyzing healthcare data, and facilitating communication between users.
  2. Improving the Platform: To analyze usage patterns, improve features, optimize performance, and enhance the security of the Platform.
  3. Compliance with Legal Obligations: To comply with applicable data protection regulations (e.g., HIPAA, GDPR) and healthcare laws, including maintaining accurate records, reporting, and fulfilling legal obligations.
  4. Customer Support: To respond to inquiries, provide technical assistance, and address any issues related to your account or the Platform.
  5. Marketing and Communication: With your consent, we may send you updates, newsletters, or promotional materials related to the Platform and our services.

3. How We Protect Your Data

We take the security of your data seriously. To protect your personal and healthcare data, we implement industry-standard security measures, including:

  1. Encryption: We use encryption protocols (such as HTTPS, TLS, and data encryption at rest) to protect data in transit and at rest.
  2. Access Control: We implement strict access controls, ensuring that only authorized personnel or systems can access or process your personal or healthcare data.
  3. Regular Audits: We conduct regular security audits and vulnerability assessments to detect and address potential risks.

4. Data Retention

We will retain your personal and healthcare data only for as long as necessary to fulfill the purposes for which it was collected, including to comply with legal, regulatory, or contractual obligations.

  1. Healthcare Data: We retain healthcare data in accordance with applicable retention periods under healthcare regulations (e.g., HIPAA in the U.S.) and organizational policies. Upon the termination of your account, you may request a copy of your data.
  2. Personal Data: If you decide to delete your account or stop using the Platform, we will retain personal data for as long as necessary to fulfill our contractual obligations or comply with legal requirements, but we will delete your data upon request, subject to applicable laws.

5. Sharing Your Information

We do not sell or rent your personal or healthcare data to third parties. However, we may share your data in the following situations:

  1. Service Providers: We may engage third-party vendors, contractors, or service providers who assist in operating and maintaining the Platform, providing customer support, or performing other services related to the Platform. These third parties are bound by confidentiality agreements and are required to implement security measures to protect your data.
  2. Legal and Regulatory Compliance: We may disclose your data to comply with legal obligations, such as responding to subpoenas, court orders, or regulatory requirements, or in response to lawful requests from government authorities.
  3. Business Transfers: In the event of a merger, acquisition, or sale of all or part of our business, your personal and healthcare data may be transferred as part of that transaction, subject to the terms of this Privacy Policy.

6. International Transfers of Data

If you are located outside the country where CareIO Inc. is based, your data may be transferred to and stored in servers located in other jurisdictions, including the United States. By using the Platform, you consent to the transfer and processing of your data in accordance with applicable data protection laws, including any necessary safeguards to protect your data.

For users in the European Economic Area (EEA), we comply with GDPR requirements for international data transfers, ensuring that appropriate safeguards (such as Standard Contractual Clauses) are in place to protect your data.

7. Your Data Protection Rights

Depending on your jurisdiction, you may have the following rights regarding your personal data:

  1. Right to Access: You have the right to request a copy of the personal data we hold about you.
  2. Right to Rectification: You can request that we correct any inaccuracies or update your personal information.
  3. Right to Deletion: You can request that we delete your personal data, subject to certain exceptions.
  4. Right to Restriction: You have the right to request the restriction of the processing of your personal data in certain circumstances.
  5. Right to Data Portability: You can request a copy of your personal data in a structured, commonly used, and machine-readable format.
  6. Right to Object: You can object to the processing of your data for marketing or other legitimate interests.

8. Cookies and Tracking Technologies

We use cookies and other tracking technologies (such as web beacons) to collect data about your use of the Platform, enhance your user experience, and analyze usage patterns.

  1. Cookies: These are small data files stored on your device to enable features such as remembering your login credentials or preferences. You can control cookie settings through your browser, but disabling cookies may affect the functionality of the Platform.
  2. Analytics: We may use third-party analytics tools (e.g., Google Analytics) to collect information about how users interact with the Platform. These tools may collect information such as IP addresses, browser types, and pages visited.

10. Changes to This Privacy Policy

We may update this Privacy Policy from time to time to reflect changes in our practices, legal requirements, or the functionality of the Platform. Any updates will be posted on this page, and the "Last Updated" date will be revised accordingly. We encourage you to review this Privacy Policy periodically to stay informed about how we are protecting your data.

11. Contact Us

If you have any questions or concerns about this Privacy Policy or our data practices, please contact us at:

CareIO Inc.
300 Witherspoon St., Ste# 201, Princeton, NJ 08542
+1 908 758 5858
info@care.io