Privacy Policy

Introduction

Dianima ("we," "us," "our") is committed to protecting your privacy. This Privacy Policy outlines how we collect, use, and safeguard your information when you use our healthcare SaaS platform, including any AI-driven features or services provided by Dianima. By using our services, you consent to the practices described in this Privacy Policy.

1. Information We Collect

a. Personal Information

We collect personal information that you provide directly to us, such as:

  • Clinician Data: Name, email, profession, and relevant practice information.
  • Patient Data: Name, email, questionnaires related to patient-provider interactions, and health communication preferences.
  • Provider Data: Clinicians’ professional profiles and details relevant to patient interactions.

b. Usage Data

We collect data on how you use the Dianima platform to optimize your experience, which includes:

  • IP addresses, browser types, device information, and pages visited.
  • Time spent on different parts of the platform and interactions with the AI-based recommendations.

c. Cookies and Tracking Technologies

Our platform uses cookies and other tracking technologies to enhance user experience. For more information about cookies, refer to our Cookie Policy.

2. How We Use Your Information

We use the data collected for several purposes:

  • To Provide and Improve Services: To personalize and optimize user experiences, improve the AI’s predictive capabilities, and enhance patient-provider interactions.
  • AI Recommendations: Personal and session data are used to offer tailored recommendations to clinicians based on patient interactions.
  • Compliance with Healthcare Regulations: Ensuring compliance with healthcare-specific data protection laws (e.g., HIPAA in the U.S.).

3. Data Security

We implement robust security measures to protect your personal data from unauthorized access, use, or disclosure:

  • Encryption: All sensitive data, such as patient health information, is encrypted in transit and at rest.
  • Access Controls: Access to data is restricted to authorized personnel only.
  • Compliance: We adhere to stringent regulations, including HIPAA, ensuring that patient health information is safeguarded.

4. Sharing Your Information

We do not sell or lease your data. However, we may share your information:

  • With Healthcare Providers: To deliver AI-driven recommendations and analytics.
  • Third-Party Service Providers: We use trusted third parties (e.g., cloud storage providers, analytics services) to help operate and maintain the Dianima platform.
  • Legal Compliance: We may disclose data if required by law or in response to lawful requests by public authorities.

5. AI Usage & Explainability

Our AI system provides clinicians with personalized recommendations based on patient data. It's essential to understand that:

  • AI is an Assistive Tool: The AI aims to complement the clinician’s decision-making, not replace it. The provider remains fully responsible for patient care.
  • Explainability: The recommendations provided are based on data-driven insights such as personality traits, communication preferences, and adherence tendencies. The logic behind recommendations is transparent, and users can contact support for further clarifications.

6. Your Rights

Depending on your location, you may have the following rights regarding your personal data:

  • Access: Request a copy of the data we store about you.
  • Correction: Request changes to any incorrect or incomplete information.
  • Deletion: Request deletion of personal data under certain conditions.
  • Objection: Object to the processing of your data for specific purposes.
  • Data Portability: Receive your data in a machine-readable format.

To exercise these rights, please contact us at privacy@dianima.io.

7. Compliance with Healthcare Regulations

We are fully compliant with:

  • HIPAA: We ensure all patient-related data meets the privacy and security requirements outlined in the Health Insurance Portability and Accountability Act.
  • Other Healthcare Laws: If applicable, we also comply with other relevant laws, such as the General Data Protection Regulation (GDPR) for patients and providers located in the European Union.

8. Data Retention

We retain personal data for as long as necessary to provide our services, comply with legal obligations, resolve disputes, and enforce agreements. Once the retention period expires, personal data will be deleted or anonymized.

9. Data Breach Notification Procedures

In the event of a data breach, we will:

  • Notify affected users as soon as possible.
  • Work with healthcare providers to mitigate the breach’s impact and ensure compliance with applicable healthcare regulations, including HIPAA and GDPR.

10. Updates to This Policy

We may update this Privacy Policy periodically. We will notify users of any significant changes by posting the new policy on this page and updating the effective date.

11. Contact Us

If you have any questions about this Privacy Policy, please contact us at team@dianima.ai.