Back to Home

Privacy Policy

Your privacy is our priority. Learn how MediSphere™ Health collects, uses, and protects your personal and health information.

Last updated: February 2025

🔒 Our Promise: We will NEVER sell your personal or health data. Your information is yours alone.

1. Information We Collect

We collect information to provide and improve MediSphere™ Health. This includes: Personal Information: • Email address and account credentials • Name and contact information you provide • Health information and medical documents you upload Usage Information: • Device information and browser type • IP address and location data • App usage patterns and preferences We only collect what's necessary to deliver our services. You control what health information you share with MediSphere™ Health.

2. How We Use Your Information

Your information is used to: • Provide and maintain the MediSphere™ Health service • Analyze and organize your health documents • Generate personalized health insights • Improve our service quality within our private HIPAA-compliant AI system only — your data is never sent to commercial AI services • Communicate important updates and features • Ensure security and prevent fraud We NEVER sell your personal or health information to third parties. Your data is used solely to serve you better.

3. Data Security & HIPAA Compliance

We implement robust security measures to protect your information: • End-to-end encryption for all data in transit and at rest • HIPAA-compliant data handling practices • Regular security audits and penetration testing • Access controls and authentication mechanisms • Secure cloud infrastructure with redundancy Our OMNI-SECURE™ technology, powered by MediSphere™ Health's private AI, ensures your health data is processed with the highest security standards. Learn more about our HIPAA compliance practices.

4. Information Sharing

We may share your information only in these circumstances: • With your explicit consent • With service providers who assist our operations (under strict agreements) • To comply with legal obligations • To protect our rights and safety • In connection with a business transfer (you would be notified) We will NEVER share your health information for marketing or advertising purposes. Period.

5. Your Rights & Choices

You have control over your data: • Access: Request a copy of your personal data • Correction: Update inaccurate information • Deletion: Request removal of your data • Portability: Export your data in a standard format • Opt-out: Unsubscribe from marketing communications • Consent: Withdraw consent for data processing To exercise any of these rights, contact us at hello@medisphere.health or through your account settings.

6. Data Retention & Deletion

We retain your information only as long as necessary: • Account data: Retained while your account is active • Health documents: Stored until you delete them • Usage data: Retained for up to 2 years • Legal compliance: Some data may be retained longer if required by law When you delete your account, we remove your personal information within 30 days, except where retention is legally required.

GDPR Compliance

🇪🇺 EU Users

If you are located in the European Economic Area (EEA), United Kingdom, or Switzerland, you have additional rights under the General Data Protection Regulation (GDPR).

Legal Basis for Processing

We process your personal data based on one or more of the following legal grounds:

  • Consent: When you explicitly agree to processing (e.g., marketing emails)
  • Contract: When processing is necessary to provide our services to you
  • Legal Obligation: When we must comply with applicable laws
  • Legitimate Interests: When processing serves our legitimate business purposes without overriding your rights

Your Rights Under GDPR

Right to Access

Request a copy of all personal data we hold about you

Right to Rectification

Request correction of inaccurate or incomplete data

Right to Erasure

Request deletion of your personal data ('right to be forgotten')

Right to Restrict Processing

Request that we limit how we use your data

Right to Data Portability

Receive your data in a structured, machine-readable format

Right to Object

Object to processing based on legitimate interests or direct marketing

Right to Withdraw Consent

Withdraw previously given consent at any time

Right to Lodge a Complaint

File a complaint with your local data protection authority

International Data Transfers

MediSphere™ Health is operated from the United States. If you are accessing our services from the EEA or other regions with laws governing data collection and use, please note that your data may be transferred to and processed in the United States. We ensure appropriate safeguards are in place, including Standard Contractual Clauses (SCCs) approved by the European Commission, to protect your data during such transfers.

For GDPR-related inquiries or to exercise your rights:

hello@medisphere.health

We will respond to your request within 30 days as required by GDPR.

Related Policies

Cookie Policy

Learn about how we use cookies

Terms of Service

Our service agreement

What is HIPAA?

Understanding health data protection

Privacy Questions?

If you have questions about our privacy practices or wish to exercise your data rights, please contact us.

hello@medisphere.health →