Neurithum Inc. ('we,' 'our,' or 'us') is committed to protecting your privacy and ensuring the security of your personal and health information.

This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our healthcare intelligence platform.

By using our services, you agree to the collection and use of information in accordance with this policy.

As a healthcare technology provider, we comply with the Health Insurance Portability and Accountability Act (HIPAA) and its implementing regulations.

We act as a Business Associate under HIPAA and have appropriate Business Associate Agreements (BAAs) in place with covered entities.

Protected Health Information (PHI) is handled according to HIPAA Privacy and Security Rules.

We maintain comprehensive policies and procedures to ensure HIPAA compliance across all operations.

Account Information: Name, email address, phone number, job title, organization, and credentials for account creation and authentication.

Professional Information: Medical license numbers, specialty, certifications, and other professional credentials.

Usage Data: Information about how you interact with our platform, including features accessed, time spent, and actions taken.

Health Information: Patient data necessary for providing clinical decision support, including medical records, lab results, vitals, and other clinical data (all HIPAA-protected).

Technical Data: IP addresses, browser types, device information, and log data for security and service improvement.

Service Delivery: To provide, maintain, and improve our clinical decision support platform.

AI and Analytics: To generate insights, predictions, and recommendations through our AI models.

Authentication and Security: To verify identity, prevent fraud, and maintain platform security.

Communication: To send important updates, notifications, and respond to inquiries.

Compliance: To meet legal, regulatory, and contractual obligations.

Research and Development: To improve AI models and platform features using aggregated, de-identified data.

We do not sell your personal information or health data to third parties.

Healthcare Providers: Patient data is shared only with authorized healthcare providers involved in care.

Service Providers: We may share data with trusted vendors who assist in platform operations (all under strict confidentiality agreements).

Legal Requirements: We may disclose information when required by law, court order, or regulatory authority.

Business Transfers: In the event of a merger or acquisition, your information may be transferred to the successor entity.

We implement industry-leading security measures to protect your information:

Encryption: All data is encrypted in transit (TLS 1.3) and at rest (AES-256).

Access Controls: Role-based access controls ensure only authorized personnel can access sensitive data.

Monitoring: Continuous monitoring for security threats and unauthorized access attempts.

Auditing: Regular security audits, vulnerability assessments, and penetration testing.

Incident Response: Comprehensive incident response plan to address any security breaches.

We retain personal information only as long as necessary to fulfill the purposes outlined in this policy or as required by law.

Health information is retained according to applicable medical record retention requirements.

Account data is retained for the duration of your active account and for a reasonable period thereafter for legal and operational purposes.

Upon request, we will delete or anonymize your data, subject to legal retention requirements.

Access: You have the right to request access to your personal information.

Correction: You can request corrections to inaccurate or incomplete information.

Deletion: You may request deletion of your data, subject to legal retention requirements.

Portability: You can request a copy of your data in a structured, machine-readable format.

Restriction: You can request restriction of processing in certain circumstances.

Objection: You have the right to object to certain types of data processing.

To exercise these rights, contact us at privacy@neurithum.com.

We use cookies and similar tracking technologies to improve user experience and analyze platform usage.

Essential cookies are necessary for platform functionality and cannot be disabled.

Analytics cookies help us understand how users interact with our platform.

You can control cookie preferences through your browser settings. See our Cookie Policy for more details.

Our platform is hosted in secure data centers in the United States.

If you access our services from outside the United States, your information may be transferred to and processed in the U.S.

We implement appropriate safeguards to ensure your data is protected according to this Privacy Policy.

For EU users, we comply with GDPR requirements for international data transfers.

Our platform is not intended for use by individuals under the age of 18.

We do not knowingly collect personal information from children.

If we become aware that we have collected information from a child, we will take steps to delete it promptly.

We may update this Privacy Policy from time to time to reflect changes in our practices or legal requirements.

We will notify you of significant changes by email or through prominent notice on our platform.

The 'Last Updated' date at the top of this policy indicates when it was most recently revised.

Your continued use of the platform after changes constitutes acceptance of the updated policy.

If you have questions or concerns about this Privacy Policy or our data practices, please contact us:

Privacy Officer: privacy@neurithum.com

Data Protection Officer: dpo@neurithum.com

Mail: Neurithum Inc., ATTN: Privacy Officer, 123 Healthcare Blvd, Suite 400, San Francisco, CA 94105

Phone: +1 (555) 123-4567