Privacy Policy

Last updated: November 26, 2024

At Cureanix, we take your privacy seriously. This policy outlines how we collect, use, and protect your personal and patient information.

Healthcare Data Protection

Cureanix is fully compliant with HIPAA regulations and Bangladesh Data Protection Act. We implement industry-leading security measures to protect sensitive healthcare information.

Information We Collect

  • Personal Information: Name, email, phone number, and professional credentials
  • Usage Data: How you interact with our platform, features used, and prescription patterns
  • Patient Data: Information entered for prescription management (encrypted and secured)
  • Device Information: Browser type, IP address, and device identifiers for security

How We Use Your Information

  • To provide and maintain our prescription management services
  • To improve and personalize your experience with AI recommendations
  • To communicate with you about updates, support, and important notices
  • To ensure platform security and prevent fraudulent activities
  • To comply with legal obligations and healthcare regulations

Data Security

  • AES-256 encryption for all sensitive data at rest and in transit
  • HIPAA-compliant infrastructure and data handling procedures
  • Regular security audits and penetration testing
  • Multi-factor authentication and role-based access control
  • Automatic data backups with encrypted storage
  • SOC 2 Type II certified data centers

Your Rights

  • Access: Request a copy of your personal and patient data
  • Correction: Update or correct any inaccurate information
  • Deletion: Request deletion of your data (subject to legal requirements)
  • Portability: Export your data in a standard format
  • Opt-out: Unsubscribe from marketing communications at any time
  • Complaint: Lodge a complaint with relevant data protection authorities

Third-Party Services

We may use trusted third-party services for:

  • Cloud hosting (AWS, Google Cloud) with HIPAA-compliant configurations
  • Payment processing (encrypted and PCI DSS compliant)
  • Analytics (anonymized data only, no patient information)
  • Email communications (secure and encrypted)

Data Retention

We retain your data only as long as necessary to provide our services and comply with legal obligations. Patient records are retained according to healthcare regulations (minimum 7 years). You can request early deletion of your account, subject to legal retention requirements.

Contact Us About Privacy

If you have questions about this Privacy Policy or how we handle your data, please contact us:

Email: privacy@cureanix.com

Phone: +880 123 456 7890