Privacy Policy
Introduction
Psynk.ai ("we," "us," or "our") is committed to protecting your privacy and being transparent about how we collect, use, and share your personal information. This Privacy Policy applies to California residents and complies with the California Consumer Privacy Act (CCPA) and the California Privacy Rights Act (CPRA).
As a healthcare AI company, we are also committed to compliance with the Health Insurance Portability and Accountability Act (HIPAA). For detailed information about our HIPAA compliance and security practices, please visit our Trust Center.
Information We Collect
We collect the following categories of personal information:
Personal Identifiers
Name, email address, phone number, company name, and other contact information you provide through our beta signup forms or other interactions.
Health Information
Clinical notes, patient observations, diagnoses, treatment plans, and other health-related information processed through our AI-powered clinical intelligence platform. Some of this information may constitute Protected Health Information (PHI) under HIPAA.
Audio Recordings (Sensitive Biometric Data)
Voice recordings from clinical sessions processed through our Chart product for transcription and AI analysis. This information is classified as sensitive personal information under California law.
Professional Information
Job title, employer, professional credentials, and other work-related information.
Internet and Network Activity
Browsing history on our website, interaction with our services, IP address, device information, and usage patterns.
Inferences and Analytics
Insights derived from AI/ML analysis of collected data, including clinical assessments, predictions, and behavioral patterns relevant to healthcare delivery.
How We Use Your Information
We use your personal information for the following business purposes:
Managing and operating our beta program
Providing AI-powered clinical intelligence and patient care services
Improving and developing our products and services
Providing customer support and responding to inquiries
Ensuring security and preventing fraud
Complying with legal obligations and regulatory requirements
Conducting research and analytics to improve healthcare outcomes
Communicating with you about our services, updates, and relevant information
Information Sharing
We do not sell or share your personal information for advertising or marketing purposes.
We may share your information with the following categories of third parties:
Service Providers: Cloud infrastructure providers, analytics services, and customer support platforms that help us operate our business
Healthcare Providers: When necessary to deliver clinical services and care coordination
Legal and Regulatory Authorities: When required by law or to protect our legal rights
Business Transfers: In connection with mergers, acquisitions, or asset sales
Your California Privacy Rights
As a California resident, you have the following rights regarding your personal information:
Right to Know
You have the right to request disclosure of the personal information we have collected about you, including the categories of information, sources, business purposes, and third parties with whom we share it.
Right to Delete
You have the right to request deletion of your personal information, subject to certain exceptions such as legal retention requirements and fraud prevention.
Right to Correct
You have the right to request correction of inaccurate personal information we maintain about you.
Right to Opt-Out of Sale and Sharing
You have the right to opt out of the sale or sharing of your personal information. As stated above, we do not sell or share your personal information, so no opt-out action is necessary.
Right to Limit Use of Sensitive Personal Information
You have the right to limit our use of your sensitive personal information (such as health data and biometric information) to only what is necessary to provide our services. We only use sensitive information for disclosed business purposes and essential service delivery.
Right to Non-Discrimination
We will not discriminate against you for exercising any of your California privacy rights. We will not deny services, charge different prices, or provide different levels of service quality based on your exercise of these rights.
How to Exercise Your Rights
To exercise any of these rights, please contact us at [email protected]. We will verify your identity and respond to your request within 45 days.
Sensitive Personal Information
We collect and process sensitive personal information, including:
Health information and medical data
Biometric data (audio recordings and voice patterns from clinical sessions)
Contents of communications between patients and providers
We use sensitive personal information only for the following allowed purposes: providing healthcare services, ensuring security and safety, verifying information quality, conducting internal research for service improvement, and complying with legal obligations. We do not use or disclose sensitive personal information for purposes beyond these necessary business functions.
HIPAA and Protected Health Information
As a healthcare technology provider, some of the information we process may constitute Protected Health Information (PHI) under the Health Insurance Portability and Accountability Act (HIPAA). PHI is exempt from certain CCPA requirements when covered by HIPAA.
For information about how we handle PHI under HIPAA, please refer to our HIPAA Notice of Privacy Practices available at our Trust Center.
We maintain comprehensive HIPAA-compliant safeguards to protect all health information. For details about our security practices, visit our Security page.
Data Retention
We retain personal information for the following periods:
Beta Signup Information: 1 year from the date of collection, or upon your deletion request
Health and Clinical Data: As required by HIPAA, applicable healthcare regulations, and clinical necessity (typically 6-7 years from last interaction or as required by law)
Audio Recordings: Deleted after transcription and processing is complete, unless retention is required for quality assurance or legal compliance
Analytics Data: Aggregated and anonymized data may be retained indefinitely for research and service improvement
We will delete or anonymize your personal information when it is no longer needed for the purposes for which it was collected, unless we are required to retain it for legal or regulatory reasons.
Security
We implement comprehensive technical, administrative, and physical safeguards to protect your personal information, including encryption, access controls, and regular security assessments. As a HIPAA-compliant organization, we maintain industry-leading security standards. For detailed information about our security practices, please visit our Security page.
Children's Privacy
Our services are not directed to children under the age of 13, and we do not knowingly collect personal information from children under 13. If we become aware that we have collected personal information from a child under 13, we will take steps to delete such information.
Updates to This Privacy Policy
We review and update this Privacy Policy at least annually and whenever there are material changes to our privacy practices. When we make changes, we will update the "Effective Date" at the top of this page. For material changes, we will provide notice through our website or by email.
Contact Information
If you have questions about this Privacy Policy or wish to exercise your privacy rights, please contact us:
Psynk.ai
10080 N. Wolfe Road, SW3-200
Cupertino, CA 95014
Email: [email protected]