Privacy & Security

Privacy Policy

Your privacy and health data security are our top priorities. Learn how we protect and handle your information.

Privacy Highlights

HIPAA compliant encryption
No data sharing without consent
Secure data storage in Bangladesh
You control your data

1. Information We Collect

Personal Information

We collect information you provide directly to us:

  • Name, email address, phone number
  • Date of birth, gender, address
  • Emergency contact information
  • Medical license numbers (for healthcare providers)

Health Information

With your consent, we may collect:

  • Appointment history and scheduling preferences
  • Medication reminders and adherence data
  • Basic health metrics (blood pressure, weight, etc.)
  • Communication preferences and language settings

Technical Information

  • Device information and IP address
  • Usage patterns and feature interactions
  • WhatsApp and SMS delivery status
  • App performance and error logs

2. How We Use Your Information

We use your information to:

  • Provide and improve our healthcare automation services
  • Send appointment reminders via WhatsApp, SMS, and calls
  • Facilitate communication between patients and doctors
  • Generate AI-powered health insights and summaries
  • Ensure platform security and prevent fraud
  • Comply with legal and regulatory requirements

3. Data Security & HIPAA Compliance

Security Measures

  • • End-to-end encryption for all health data
  • • HIPAA-compliant data storage and processing
  • • Regular security audits and penetration testing
  • • Multi-factor authentication for healthcare providers
  • • Secure data centers in Bangladesh with 24/7 monitoring

4. Data Sharing and Disclosure

We do not sell your personal information. We may share your data only:

  • With your explicit consent
  • With healthcare providers involved in your care
  • To comply with legal obligations
  • With trusted service providers under strict confidentiality agreements
  • In case of medical emergencies to facilitate care

5. Your Privacy Rights

You have the right to:

  • Access and review your personal information
  • Correct inaccurate or incomplete data
  • Delete your account and associated data
  • Export your data in a portable format
  • Opt-out of non-essential communications
  • Restrict certain data processing activities

6. International Data Transfers

Your data is primarily stored and processed in Bangladesh. If we need to transfer data internationally, we ensure adequate protection through approved mechanisms and obtain your consent where required.

7. Data Retention

We retain your information for as long as necessary to provide our services and comply with legal obligations. Health information is typically retained for 7 years after your last interaction, unless you request earlier deletion.

8. Children's Privacy

Our services are not intended for children under 13. We do not knowingly collect personal information from children under 13. If you believe we have collected such information, please contact us immediately.

9. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of any material changes via email or through our platform. Your continued use of our services after such changes constitutes acceptance of the updated policy.

Data Breach Notification

In the unlikely event of a data breach affecting your personal information, we will notify you within 72 hours and provide details about the incident and steps we're taking to address it.

10. Contact Us

If you have questions about this Privacy Policy or our data practices, please contact our Data Protection Officer:

Email: privacy@caresync.ai

Data Protection Officer: dpo@caresync.ai

Address: Dhaka, Bangladesh

Phone: +880 1711-123456

Your Privacy is Protected

Start using CareSync AI with confidence, knowing your health data is secure and private.