login
Subscribe
login
Subscribe

Privacy Policy

Effective Date: October 11, 2022

1. ABOUT

ChiroPAX and its affiliates (“ChiroPAX”“chiropax.ai”“we”“us”, and “our”) is committed to protecting your privacy. This Privacy Policy will help you understand how we collect, use and share your personal information and assist you in exercising the privacy rights available to you.

2. SCOPE

This Privacy Policy applies to personal information processed by us, including on our ChiroPAX web application (chiropax.ai, and its associated subdomains), our mobile applications, our application program interfaces, and our related online and offline offerings (collectively, the “Services”).

This Privacy Policy does not apply to any third-party websites, services or applications, even if they are accessible through our Services. By accessing or using our Service, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy and our Terms of Service.

3. PERSONAL INFORMATION WE COLLECT

Google Account Information. We are using only Sign-In with Google right now, so when you sign in to ChiroPAX, we collect the following personal information from your Google Account (with your consent):

  • Google Account Username.
  • Email address.
  • Google Account Profile Picture.

Google Healthcare Data Access. ChiroPAX is using Google Healthcare APIs for storing ChiroPAX customers Healthcare Data Records (for example Radiological Images). So, ChiroPAXrequires you to grant access to “Read, Write and Manage healthcare data”(represented by this Google OAuth scope https://www.googleapis.com/auth/cloud-healthcare).

Your Organization Basic Data. If you are using ChiroPAX on behalf of a Medical Organization, you may be asked to provide some information about your organization (for example, your organization business phone number, Organization Address).

Your Organization Healthcare Data. The healthcare data of your organization (Hospital, clinic…etc.) that you provide to ChiroPAX for the following purposes:

  • Storing your organization healthcare data records (for example, DICOM Radiological Images).
  • Viewing and processing/analyzing your healthcare data via ChiroPAX Web application.

Payment Information. Where we sell products and services through the Services, we use third-party services such as Stripe to process your payments. These third-party services will collect information from you to process a payment on behalf of ChiroPAX, including your name, email address, mailing address, payment card information, and other billing information. ChiroPAX does not receive or store your payment information, but it may receive, and store information associated with your payment information (e.g., the fact that you have paid, the last four digits or your credit card information, and your country of origin).

4. HOW WE USE YOUR INFORMATION

Email Address ChiroPAX uses your email address to:

  • Provision your identity in our databases and allowing you to sign in and use the ChiroPAX Service.
  • Send you important email notifications like a ChiroPAX customer organization added you to its user list.
  • If you are a ChiroPAX Customer Organization Account Manager (Administrator), you will receive emails regarding the registration and subscription notifications.
  • Processing payment card and/or other financial information to facilitate your use of the Services.
  • Providing access to certain areas, functionalities, and features of our Services, including sharing of content with guest users.

Profile Information ChiroPAX uses your account profile information (Username and Picture) for personalizing your login experience while you are using ChiroPAX.

Google Healthcare Data Access ChiroPAX use https://www.googleapis.com/auth/cloud-healthcare in order to view, process and analyze your healthcare data (for example, DICOM Images) after your consent. If you choose not to allowChiroPAX to “read, write and manage your healthcare data”, you will not be able to use ChiroPAX properly.

Your Organization Healthcare Data ChiroPAX allows you to process, edit and analyze your organization’s healthcare data (like DICOM Images and reports) from ChiroPAX UI.

5. DISCLOSING YOUR INFORMATION TO THIRD PARTIE

We may share any personal information we collect with the following categories of third parties:

External users. ChiroPAX allows you to share any of your healthcare data records (e.g., Dicom Studies) with external guest users. If you choose to share certain data records with certain guest users, ChiroPAX will only allow the users you specified to access only the data records you specified.

Third-Party Platforms and Services. We will share your personal information and/or your healthcare data with third-party platforms and/or services if you have expressly consented or requested that we do so. Please note we do not endorse, screen or approve, and are not responsible for, the practices or conduct of such third-party services.

Your Organization and Administrator. We will share your information with your organization at its request and give such organization certain rights over your information. If you are the administrator of the Organization within the Services, we may share your contact information with current or past Service users related to you, for the purpose of facilitating Service-related requests. Please note that your information may also be subject to your organization’s privacy policy, and we are not responsible for the privacy or security practices of our customers.

Service Providers. We may share personal information we collect about you with our service providers. The categories of service providers to whom we entrust personal information include service providers for:

  • The provision of the Services.
  • The provision of information, products, and other services you have requested.
  • Marketing.
  • Payment and transaction processing.
  • Customer service activities
  • The provision of IT and related services.

Disclosure in the Event of Merger, Sale, or Other Asset Transfer. If we are involved in a merger, acquisition, financing due diligence, reorganization, bankruptcy, receivership, purchase or sale of assets, or transition of service to another provider, then your information may be sold or transferred in accordance with our legitimate interests in administering our business as part of such a transaction, as permitted by law and/or contract.

Disclosures to Protect Us or Others. We will access, preserve, and disclose information we have associated with you to competent law enforcement bodies, regulatory and government agencies, courts or other third parties if we believe doing so is required or appropriate to:

  • Comply with law enforcement or national security requests and legal process, such as a court order or subpoena.
  • Protect your, our or others’ rights, property, or safety.
  • Enforce our policies and contracts.
  • Collect amounts owed to us.
  • Prevent financial loss or in connection with an investigation or prosecution of suspected or actual illegal activity
  • If we, in good faith, believe that disclosure is otherwise necessary or advisable.

6. INTERNATIONAL DATA TRANSFERS

All information processed by us may be transferred, processed, and stored anywhere in the world, which may have data protection laws that are different from the laws where you live. We endeavor to safeguard your information consistently with the requirements of applicable laws.

7. YOUR PRIVACY RIGHTS

In accordance with applicable law, you may have the right to:

  • Access Personal Information about you, including:
    1. Confirming whether we are processing your personal information.
    2. Obtaining access to or a copy of your personal information.
    3. Receiving an electronic copy of personal information that you have provided to us, or asking us to send that information to another company (the “right of data portability”)
  • Request Correction of your personal information where it is inaccurate or incomplete. In some cases, we may provide self-service tools that enable you to update your personal information.
  • Request Deletion of your personal information.
  • Request Restriction of or object to our processing of your personal information
  • Withdraw your Consent to our processing of your personal information.

If you would like to exercise any of these rights, please contact us as set forth below.

We will process such requests in accordance with applicable laws. To protect your privacy, we will take steps to verify your identity before fulfilling your request.

Please note that if you use our Services on behalf of an organization (e.g., your employer), that organization may be responsible for fulfilling the individual rights requests referenced above.

8. DATA RETENTION

We store the personal information we receive as described in this Privacy Policy for as long as you use our Services or as necessary to fulfill the purpose(s) for which it was collected, provide our Services, resolve disputes, establish legal defenses, conduct audits, pursue legitimate business purposes, enforce our agreements, and/or comply with applicable laws. The specific retention periods depend on the nature of the information and why it is collected and processed and the nature of the legal requirement.

When we have no ongoing legitimate business need or legal reason to process your personal information, we will either delete or anonymize it or, if this is not possible (for example, because your personal information has been stored in backup archives), then we will securely store your personal information and isolate it from any further processing until deletion is possible. You may request deletion of your personal information at any time as noted in “Your Privacy Rights”, above, but that will require you to delete your account with us, as we need your personal data to maintain your account.

9. SECURITY OF YOUR INFORMATION

We take steps to ensure that your information is treated securely and in accordance with this Privacy Policy.

We may communicate with you electronically regarding security, privacy, and administrative issues relating to your use of the Services. If we learn of a security system’s breach, we may attempt to notify you electronically by posting a notice on the Services, by mail or by sending an email to you.

10. THIRD-PARTY WEBSITES/APPLICATIONS

The Services may contain links to other websites/applications and other websites/applications may reference or link to our Services. These third-party services are not controlled by us. We encourage our users to read the privacy policies of each website and application with which they interact. We do not endorse, screen or approve, and are not responsible for, the privacy practices or content of such other websites or applications. Visiting these other websites or applications is at your own risk.

11. SUPPLEMENTAL NOTICE FOR CALIFORNIA RESIDENTS

This Supplemental California Privacy Notice only applies to our processing of personal information that is subject to the California Consumer Privacy Act of 2018 (“CCPA”). The CCPA provides California residents with the right to know what categories of personal information ChiroPAX has collected about them and whether ChiroPAX disclosed that personal information for a business purpose (e.g., to a service provider) in the preceding 12 months. California residents can find this information above, in the respective sections of this Privacy Policy, and below:

ChiroPAX collects the following Categories of Personal Information:

  • Identifiers: *A real name, alias, postal address, unique personal identifier, online identifier, Internet Protocol address, email address, or other similar identifiers.
  • Personal information categories listed in the California Customer Records statute (Cal. Civ. Code § 1798.80(e)): A name, signature, address, telephone number or employment. Personal Information does not include publicly available information that is lawfully made available to the general public from federal, state, or local government records. Note: Some personal information included in this category may overlap with other categories.
  • Protected classification characteristics under California or federal law: Age (40 years or older), race, color, ancestry, national origin, citizenship, religion or creed, marital status, medical condition, physical or mental disability, sex (including gender, gender identity, gender expression, pregnancy or childbirth and related medical conditions), sexual orientation, veteran or military status.
  • Commercial information:
  • Internet or other electronic network activity: Information on a consumer’s interaction with websites, applications, or advertisements related to the Services.
  • Geolocation data: Physical location.
  • Sensory data: Audio, electronic, visual, or similar information.
  • Inferences drawn from other personal information to create a profile about a consumer: Profile reflecting a consumer’s preferences or characteristics as they relate to the Services.

ChiroPAX Discloses to the following Categories of Third Parties for a Business Purpose:

  • Advertising networks
  • Internet service providers
  • Data analytics providers
  • Operating systems and platforms
  • Social networks
  • Service providers

Sales of Personal Information under the CCPA

As defined by the CCPA, ChiroPAX does not sell personal information of California residents, nor do we have actual knowledge of any sale of personal information of minors under 16 years of age.

Additional Privacy Rights for California Residents

  • Non-Discrimination. California residents have the right not to receive discriminatory treatment by us for the exercise of their rights conferred by the CCPA.
  • Authorized Agent. Only you, or someone legally authorized to act on your behalf, may make a verifiable consumer request related to your personal information. You may also make a verifiable consumer request on behalf of your minor child. To designate an authorized agent, please contact us as set forth below.

Verification. To protect your privacy, we will take steps to verify your identity before fulfilling your request. When you make a request, we will ask you to provide sufficient information that allows us to reasonably verify you are the person about whom we collected personal information or an authorized representative, which may include asking you to log in to your account or verify your email address.

If you are a California resident and would like to exercise any of your rights under the CCPA, please contact us as set forth below. We will process such requests in accordance with applicable laws.

12. CHILDREN’S INFORMATION

The Services are not directed to children under 13, and we do not knowingly collect personal information from children. If you learn that your child has provided us with personal information without your consent, you may contact us as set forth below. If we learn that we have collected a child’s personal information in violation of applicable law, we will promptly take steps to delete such information and terminate the child’s account, or, if appropriate and possible, seek written consent from such child’s guardian.

13. CHANGES TO OUR PRIVACY POLICY

We may revise this Privacy Policy from time to time at our sole discretion. If there are any material changes to this Privacy Policy, we will notify you as required by applicable law.

14. CONTACT US

If you have any questions about this Privacy Policy or our privacy practices, or if you wish to submit a request to exercise your rights as detailed in this Privacy Policy, please contact us at:

ChiroPAX LLC, 50 Maxwell, Irvine, CA 92618

Email: mkhaled@voyancemed.com

Archives

Categories