Privacy Policy

Effective Date: 01/01/2025

Last Updated: 01/01/2025

Medicus Notes ("we," "our," or "us") is committed to protecting the privacy and security of information processed through our mobile application ("App"). This Privacy Policy describes how we collect, use, and share information provided by healthcare professionals (referred to as "users" or "you") and how we securely handle Protected Health Information (PHI) related to patients.

By using the App, you agree to the terms outlined in this Privacy Policy.

1. Applicability of HIPAA

Our App is designed for healthcare professionals, including doctors, who may use the App to record, process, and manage patient visits. In doing so:

• You may transmit or store PHI (e.g., audio recordings, SOAP notes) through the App.
• We are committed to complying with the Health Insurance Portability and Accountability Act (HIPAA) to ensure the privacy and security of PHI.
• As a Business Associate under HIPAA, we safeguard PHI on behalf of Covered Entities (e.g., healthcare providers) who use our App.

2. Information We Collect

2.1. Information Provided by Healthcare Professionals

• Account Information: Name, email address, and login credentials (e.g., via Google or Apple).
• Subscription Information: Payment and subscription details collected through Apple or Google.
• Audio Recordings: Recordings of patient visits captured via the App for transcription into SOAP notes.

2.2. Patient Data (PHI)

• PHI may include patient symptoms, diagnoses, treatment plans, or other health information recorded by healthcare professionals and processed through the App.

2.3. Automatically Collected Information

• Device Information: Device type, operating system, and unique device identifiers.
• Usage Data: Information about your interactions with the App, such as features accessed and session durations.

3. How We Use Information

We use the information we collect, including PHI, for the following purposes:

• For Healthcare Professionals: To provide core App functionality, manage subscriptions, and ensure compliance with HIPAA.
• For Patients (PHI): To process and securely store audio recordings for real-time transcription into SOAP notes.
• For Security and Compliance: To detect and prevent unauthorized access to PHI.
• Legal and Regulatory Requirements: To comply with legal obligations under HIPAA.

4. How We Share Information

We do not sell personal information or PHI. We may share information in the following circumstances:

• With Service Providers: Trusted third-party vendors (e.g., OpenAI, Firebase) who process information on our behalf under HIPAA-compliant safeguards.
• With Covered Entities: Authorized sharing with healthcare organizations using the App.
• For Legal Reasons: To comply with legal or regulatory obligations, including HIPAA.

5. HIPAA Compliance and Data Security

We implement rigorous measures to protect patient data and ensure compliance with HIPAA:

• Encryption: All PHI is encrypted in transit using TLS 1.2+ and at rest using AES-256 encryption.
• Access Controls: Role-based access ensures appropriate permissions for authorized users.
• Secure Data Storage: Data is stored in HIPAA-compliant environments, such as Firebase.
• Audit Trails: All access to PHI is logged and monitored.
• Breach Notification: In the event of a data breach involving PHI, we will notify affected healthcare professionals and regulators as required under HIPAA.

6. Your Responsibilities as a Healthcare Professional

As a user of the App:

• You are responsible for ensuring your use of the App complies with HIPAA or other applicable regulations.
• You must use secure devices and accounts to access the App.
• You should not share your App credentials or PHI with unauthorized parties.

7. Retention of Data

• Audio Recordings: Processed in real-time for transcription and not stored permanently unless explicitly required for app functionality.
• Transcriptions (SOAP Notes): Stored securely for as long as necessary to provide the App's services or as required by law.

8. Contact Us

If you have questions or concerns about this Privacy Policy or HIPAA compliance, please contact us:

Email: support@unaryops.com