PRIVACY POLICY
Last Updated: December 7, 2023
Welcome to Dr.AI, a pioneering medical technology platform developed by Meiyo Medical Technology Inc (Samoa) and IntoWell Biomedical Technology Inc (Taiwan) (collectively referred to as "IntoWell").
Dr.AI, our flagship product, signifies a monumental leap in healthcare technology. It offers two distinct versions: a professional version for Healthcare Professionals and a public version for individuals worldwide. By utilizing cutting-edge Artificial Intelligence, Dr.AI provides comprehensive medical analyses, accurate diagnoses, and tailored treatment recommendations.
This Privacy Policy is crafted with the utmost regard for your privacy and data protection. It governs the collection, use, and safeguarding of personal information provided by users of Dr.AI. Whether you are a healthcare professional harnessing Dr.AI for advanced medical evaluations, or an individual seeking personalized health recommendations, this policy outlines our commitment to protecting your personal data.
Our dedication to data security and privacy compliance extends to every facet of Dr.AI's functionality. We understand the sensitive nature of medical data and adhere strictly to global data protection standards, ensuring that your information is handled with the highest level of confidentiality and security.
The provisions of this Privacy Policy apply to all interactions with Dr.AI, including the use of our website, applications, and services. However, this policy does not extend to data processed on behalf of our business customers, which is governed by separate agreements.
As we navigate the realms of advanced AI in healthcare, we remain steadfast in our commitment to your privacy and data security. The following sections detail our practices regarding the collection, use, and protection of your personal information, underlining our pledge to uphold your trust in Dr.AI.
1. INFORMATION WE COLLECT
Health Data Provided by You: When you use Dr.AI, you may choose to upload health check reports for analysis. This data includes, but is not limited to, medical history, laboratory results, and other health-related information. Please note, we do not require or collect any personal identification information (such as national ID numbers, social security numbers, etc.) associated with these health records.
Technical Information Collected Automatically:
- Usage Data: We collect anonymized data on how you interact with our services. This includes the types of medical conditions analyzed, features used, and general usage patterns.
- Device Information: We gather information about the device you use to access Dr.AI, such as device type, operating system, and browser information. This helps us optimize Dr.AI for your specific device and improve overall functionality.
- Log Data: Our servers automatically record information ("log data") created by your use of Dr.AI. Log data may include information such as your IP address, browser type, operating system, the referring web page, pages visited, location, your mobile carrier, device information, search terms, and cookie information.
Cookies and Similar Technologies:
We use cookies and similar technologies to enhance your browsing experience, understand user behavior, and manage and improve our services. You have the option to disable cookies, but this may impact your user experience on Dr.AI. We utilize various analytics tools to help us understand the use of our service. This data is kept in aggregated form and does not include any personally identifiable information.
Feedback and Communication:
If you contact us directly, we may receive additional information about you. For example, we may receive your email address, the contents of a message or attachments that you may send to us, and other information you may choose to provide. We may also receive feedback from you about your experience with Dr.AI, which we use to improve our service.
Information from Third-Party Sources:
We may occasionally collect information from third-party sources, such as healthcare providers or medical institutions, provided they have obtained your consent to share this information with us.
2. INFORMATION YOU PROVIDE TO US
Account Information:
To access Dr.AI's services, you may be required to create an account. During registration, we ask for basic information such as your name, email address, and a password. This information is used to manage your account, provide our services, and communicate with you about your account and our services. Please note that we do not collect or store any personal identification numbers or sensitive personal identity data.
Health Data:
As a medical analysis platform, you have the option to upload health-related information such as medical history, symptoms, and health check reports. This information is crucial for Dr.AI to provide accurate medical analyses and recommendations. We emphasize that we do not link this health data to any personal identification information, ensuring your privacy and confidentiality.
Payment Information:
For any financial transactions on Dr.AI, such as subscribing to our professional version, we collect payment information required to process these transactions. This may include your name, billing address, and payment card details. Again, we assure you that we do not store any personal identification numbers related to your financial information.
Communications with Us:
When you contact our support team, respond to surveys, or communicate with us in any form, we collect information such as your email address and the contents of your communication. This information is used to respond to your inquiries and improve our services. We do not use this communication to gather any personal identification details.
Feedback and User Content:
We welcome and encourage feedback, which may include user content such as suggestions or comments regarding our service. This helps us to improve Dr.AI and better cater to your needs. In providing this feedback, you are not required to submit any personal identification information.
3. HOW WE USE PERSONAL INFORMATION
To Deliver and Enhance Our Services:
We use the health-related information you provide to deliver accurate medical analyses and treatment recommendations. This includes processing your health check reports and offering personalized healthcare insights. Continual improvement of Dr.AI is paramount. We analyze usage patterns and user feedback to enhance the functionality and user experience of our platform.
For Communication and User Support:
We use your contact information to communicate with you regarding your account, to provide updates about our services, and to offer customer support. Your feedback is crucial to us. We may use the information you provide in surveys or communications to better understand your needs and improve our services.
To Ensure Platform Security and Integrity:
We implement robust measures to prevent fraud, unauthorized access, and misuse of our services. This includes monitoring for suspicious or anomalous activities to protect the security of our IT systems and networks. In the case of any security incidents, the information you provide helps us to swiftly address and resolve these issues.
For Research and Development:
We use the aggregated health data to conduct research, aiding in the development of new features and services that can enhance healthcare delivery and user experience. As part of our commitment to innovation, we may use de-identified information for research purposes, ensuring that individual users cannot be identified.
Compliance and Legal Obligations:
We may use the information to comply with legal obligations, respond to legal processes, or protect our rights and those of our users. In certain situations, we might need to use the information for business transfers or to protect the safety of our affiliates and third parties.
Aggregated and De-Identified Information:
We aggregate or de-identify personal information to ensure it can no longer identify you. This data might be used for analyzing service effectiveness, conducting market research, and for other similar purposes. While maintaining the anonymity of this data, we may share aggregated user statistics with third parties or publish them for informative purposes.
4. DISCLOSURE OF PERSONAL INFORMATION
Vendors and Service Providers:
To support our business operations and provide you with our services, we may share personal information with vendors and service providers. This includes hosting services, customer service support, cloud services, and analytics providers. These entities are bound by strict confidentiality agreements and use your information solely to perform their duties on our behalf.
Business Transfers:
In the event of a merger, acquisition, or sale of company assets, or during a business transition, your personal information may be transferred as part of the transaction. We will ensure that any successor or affiliate handling your information adheres to this Privacy Policy.
Legal Requirements:
We may disclose your information in response to legal processes such as subpoenas, court orders, or government requests. Additionally, we may share your information to protect our rights, prevent fraud, and ensure the security of our network and services.
Affiliates:
We may share your information with our affiliates, under the common control of IntoWell, in a manner consistent with this Privacy Policy. These affiliates will use your information in line with our privacy practices.
Your Consent With:
We may share your information following your explicit consent or at your direction, such as when you choose to share analysis results with healthcare providers.
Aggregated or De-identified Information:
We may disclose information that has been aggregated or de-identified so that it can no longer be used to identify you. This may include publishing statistics about the use of our services or sharing data for research purposes.
Publicly Shared Information:
Any information you choose to make public, such as in public URLs or shared test results, will be disclosed publicly. We encourage you to consider the sensitivity of any information you decide to disclose in these settings.
Published Support Requests:
If you send us a request for assistance, we reserve the right to publish the request to clarify or respond to your query or to assist other users, while ensuring that your personal identification information is not disclosed.
5. SECURITY AND RETENTION
Security of Your Data:
Dr.AI is committed to protecting your data from unauthorized access, alteration, disclosure, or destruction. We implement robust technical, administrative, and organizational measures to safeguard your information. Our platform utilizes advanced security protocols to ensure the secure transmission and storage of your data. This includes hosting on highly secure cloud services and employing encryption methods during data transfer. Despite our efforts, please be aware that no Internet transmission is ever fully secure. We encourage you to be mindful of this when transmitting health check reports or other sensitive information to us.
Data Retention Policy:
Dr.AI retains your personal information only as long as necessary to provide you with our services. The retention period depends on various factors, such as the nature and sensitivity of the data, the purpose for which we process the information, and our legal obligations. Once the purpose for which the data was collected is fulfilled, we will securely delete or anonymize your information, unless legal requirements dictate otherwise.
Handling Data During Business Changes:
In the event of any business changes, such as mergers or acquisitions, we will maintain the protection of your data and inform you of any changes to its handling or ownership.
Your Responsibilities:
While we take strong measures to protect your data, the security of your account also relies on your actions. We advise you to use strong passwords and to keep your login credentials confidential. In case of any unauthorized use of your account or breach of privacy, please contact us immediately.
Deletion of Data:
You have the right to request the deletion of your personal data from our records. We will comply with your request in accordance with applicable laws and our data retention policies.
Changes to Data Retention Practices:
If we change our data retention practices, we will update this policy accordingly and inform you of any significant changes in how we handle your data.
6. YOUR RIGHTS
Rights Under the European General Data Protection Regulation (GDPR): If you are located in a country within the scope of the GDPR, you have the right to:
- Request access to your personal data that Dr.AI processes.
- Request correction or deletion of your personal data.
- Object to the processing of your personal data
- Request that we limit the processing of your personal data.
- Request the portability of your personal data.
- Additionally, you have the right to make a complaint to a relevant supervisory authority regarding the handling of your personal data.
Rights Under the California Consumer Privacy Act (CCPA): For California residents, the CCPA provides additional rights, including:
- Requesting to know the categories and specific pieces of personal information collected about you, the purposes for collecting such information, and the categories of third parties with whom it is shared.
- Requesting the deletion of personal information collected or maintained by Dr.AI.
- Opting out of the sale of personal information. (Note: Dr.AI does not sell personal information.)
- Non-discrimination for exercising CCPA rights.
Exercising Your Rights: You can typically exercise these rights through your Dr.AI account settings. If you need further assistance, you can contact us directly (details provided in the “HOW TO CONTAC US” section).
- Verification Process: To protect your information, we will verify your identity before proceeding with any request related to your personal data.
- Authorized Agents: You may designate an authorized agent to make requests on your behalf. We require written authorization and verification of your identity to accept such requests.
Accuracy and Correction of Information:
While Dr.AI does not collect personal identification details, if you find any inaccuracies in the information processed by Dr.AI, you have the right to request correction.
Information Shared Publicly:
Any information you choose to make public (e.g., shared health analysis results) will be publicly accessible. Please consider the sensitivity of the information you decide to share in public or with other users.
Contacting Us About Your Rights:
For any inquiries or requests regarding your rights, please refer to the “HOW TO CONTAC US” section of this policy.
7. LINKS TO OTHER WEBSITES
External Links:
Dr.AI may include links to external websites, such as medical resources, healthcare organizations, or informational articles that are not operated or controlled by IntoWell. These links are provided for your convenience and to enhance your overall user experience. Please note that these Third Party Sites have their own privacy policies and terms of service. When you click on a link to an external site, you are leaving Dr.AI and are subject to the privacy policies and practices of the external site.
No Endorsement Implied:
The inclusion of links to Third Party Sites does not imply endorsement or validation of the content found on these sites by Dr.AI or IntoWell. We aim to provide relevant and valuable information but do not take responsibility for the accuracy or content of these external sites.
User Discretion Advised:
When you share information with Third Party Sites, such as social media platforms or external healthcare services, the information you share is governed by their specific privacy policies and terms of service. We encourage you to be cautious and to familiarize yourself with the privacy policies and terms of service of any Third Party Sites you interact with through our platform.
No Personal ID Collection:
Dr.AI does not collect any personal identification details through these external links. Our focus remains on safeguarding your health-related data within our platform.
Your Interaction with Third Party Sites:
Interaction with Third Party Sites, including the submission of personal information, is done at your own risk. We advise you to exercise discretion when providing your information on such platforms.
8. CHANGES TO THE PRIVACY POLICY
Updating the Privacy Policy:
We may update this Privacy Policy periodically to reflect changes in our practices, service offerings, or legal requirements. While most changes are likely to be minor, some changes may be more significant. We will provide notice of any significant changes to the Privacy Policy and, where required by law, we will obtain your consent.
Notification of Changes:
Changes to the Privacy Policy will be posted on the Dr.AI website and, where appropriate, we may provide additional notice of changes. This could include notifications on our homepage, via email, or through your dashboard on our platform. We encourage you to review the Privacy Policy periodically to stay informed about how we are protecting the personal information we collect.
Date of Effect:
The updated Privacy Policy will become effective as of the date of posting, unless otherwise noted. Your continued use of our services after the changes have been posted signifies your acceptance of the updated terms.
Your Acceptance of Changes:
By using Dr.AI’s services, you acknowledge and agree to be bound by the terms of the Privacy Policy as modified. If you do not agree to the updated terms, you should discontinue your use of our services.
Archiving Policy Changes:
For your reference, we may keep an archive of previous versions of our Privacy Policy. You can request access to these versions by contacting us.
9. HOW TO CONTACT US
For any inquiries or concerns regarding Dr.AI's Privacy Policy, or to exercise your rights as detailed in the policy, please contact us via email at [email protected]. This is the most efficient way to ensure a prompt response to your questions. Our dedicated team is available to address any issues or provide clarification on our privacy practices.