Privacy

Privacy

Privacy Policy

Effective Date: January 1, 2025
Last Updated: January 1, 2025

At AEGIS AI (Advanced Evidence-Guided Intelligence System), we are committed to protecting your privacy and safeguarding your personal and health information. This Privacy Policy explains how we collect, use, store, and protect your information when you use our cardiovascular digital twin platform, visit our website, or engage with our services.

1. Information We Collect

We may collect the following types of information:

Personal Information

  • Name, email address, phone number, job title, organization name, and professional credentials when you register for our platform, request a demo, or contact us

Health and Clinical Data

  • Cardiovascular data including ECG recordings, medical imaging (CT, MRI, echocardiography), laboratory results, vital signs, genetic information, wearable device data, and clinical history when you use our platform

  • De-identified patient data used for AI model training and research purposes

Professional Information

  • Healthcare provider credentials, hospital affiliations, specialty areas, and clinical practice information for authentication and authorization purposes

Technical and Usage Data

  • IP address, browser type, device information, pages visited, session duration, and platform interaction data collected via cookies and analytics tools

  • System performance metrics and error logs for platform optimization

Communications Data

  • Content of emails, support tickets, feedback forms, and other communications you send to us

2. How We Use Your Information

We use the information we collect to:

Platform Services

  • Provide cardiovascular risk assessment, digital twin modeling, and predictive analytics

  • Generate personalized clinical insights and treatment recommendations

  • Process and analyze multi-modal health data for individual patient care

Service Improvement

  • Train and refine our AI algorithms using de-identified data

  • Improve platform accuracy, performance, and user experience

  • Conduct clinical research and validation studies

Communication and Support

  • Respond to inquiries, provide technical support, and deliver customer service

  • Send platform updates, security alerts, and important service notifications

  • Share relevant educational content, research findings, and industry insights

Compliance and Safety

  • Meet regulatory requirements including FDA, HIPAA, and international healthcare data protection standards

  • Ensure patient safety, data integrity, and platform security

  • Fulfill legal obligations and respond to lawful requests

Business Operations

  • Process payments and manage subscriptions

  • Conduct business analytics and market research

  • Plan and execute platform improvements and new features

3. How We Share Your Information

We do not sell, rent, or trade your personal or health information. We may share data only in the following circumstances:

Healthcare Providers

  • With authorized clinicians and healthcare professionals within your care team who have legitimate access rights

  • With hospital systems and healthcare organizations where you receive treatment (only with proper authorization)

Service Providers

  • With trusted third-party vendors who provide essential services (cloud hosting, payment processing, technical support, data analytics) under strict confidentiality and HIPAA Business Associate Agreements

Research Partners

  • With academic medical centers and research institutions for clinical validation studies, using only de-identified or aggregated data

  • Only when you have provided explicit consent for research participation

Legal Requirements

  • When required by law, regulation, legal process, or governmental request

  • To protect the safety, rights, or property of AEGIS AI, our users, or the public

  • In connection with investigating potential violations of our Terms of Service

Business Transfers

  • In the event of a merger, acquisition, or sale of assets, your information may be transferred to the acquiring entity (you will be notified of any such change)

4. Data Security and HIPAA Compliance

We implement comprehensive security measures to protect your information:

Technical Safeguards

  • End-to-end encryption for data in transit (TLS 1.3) and at rest (AES-256)

  • Multi-factor authentication and role-based access controls

  • Regular security audits, penetration testing, and vulnerability assessments

  • Intrusion detection and prevention systems

Administrative Safeguards

  • HIPAA Privacy and Security Rule compliance

  • Comprehensive staff training on data protection and patient privacy

  • Strict confidentiality agreements with all employees and contractors

  • Incident response and breach notification protocols

Physical Safeguards

  • Data stored in SOC 2 Type II certified, HITRUST-compliant cloud infrastructure

  • Redundant systems and disaster recovery protocols

  • 99.9% uptime guarantee with automated backups

Access Controls

  • Access limited to authorized personnel on a need-to-know basis

  • Comprehensive audit logging of all data access and modifications

  • Regular access reviews and privilege management

Important Note: While we implement industry-leading security measures, no system is completely secure. We cannot guarantee absolute security but commit to promptly notifying affected parties in the event of a data breach as required by law.

5. Your Privacy Rights

Depending on your location and applicable laws (HIPAA, GDPR, CCPA), you have the following rights:

Access and Portability

  • Request a copy of the personal and health information we hold about you

  • Receive your data in a structured, commonly used, and machine-readable format

  • Request transfer of your data to another healthcare provider or platform

Correction and Updates

  • Request correction of inaccurate or incomplete information

  • Update your contact details and preferences at any time

Deletion and Restriction

  • Request deletion of your personal information (subject to legal retention requirements)

  • Request restriction of processing for specific purposes

  • Object to certain types of data processing

Consent Management

  • Withdraw consent for optional data processing at any time

  • Opt-out of marketing communications while continuing to receive essential service notifications

  • Manage cookie preferences through your browser settings

HIPAA Rights

  • Request an accounting of disclosures of your protected health information

  • Request confidential communications by alternative means or locations

  • File a complaint with the U.S. Department of Health and Human Services if you believe your privacy rights have been violated

To exercise these rights, contact us at:
📧 Email: ilakeyan.thiagarajan@outlook.com
🔗 Twitter: https://x.com/Ilakeyan_t

We will respond to valid requests within 30 days (or as required by applicable law).

6. Data Retention

We retain personal and health information only as long as necessary:

Active Users

  • Personal information: Duration of your account plus 7 years (for regulatory compliance)

  • Clinical data: As required by healthcare record retention laws (typically 7-10 years)

  • Platform usage data: 3 years for analytics and service improvement

Inactive Accounts

  • Account data may be anonymized or deleted after 2 years of inactivity (with advance notice)

  • De-identified research data may be retained indefinitely for scientific purposes

Legal Requirements

  • Data subject to legal holds, litigation, or regulatory investigations retained until resolution

  • Financial records retained per tax and accounting requirements (typically 7 years)

7. Cookies and Tracking Technologies

Our website and platform use cookies and similar technologies:

Essential Cookies

  • Required for platform functionality, security, and user authentication

  • Cannot be disabled without affecting platform performance

Analytics Cookies

  • Used to understand how users interact with our platform

  • Help us improve user experience and identify technical issues

  • You can opt-out through cookie preferences

Marketing Cookies

  • Used to deliver relevant content and measure campaign effectiveness

  • Can be disabled through browser settings without affecting platform functionality

Managing Cookies: You can control cookies through your browser settings. Note that disabling certain cookies may limit platform functionality.

8. Children's Privacy

AEGIS AI is designed for healthcare professionals and adult patients. We do not knowingly collect personal information from individuals under 18 without parental or guardian consent. If we discover we have inadvertently collected such information, we will promptly delete it.

9. International Data Transfers

AEGIS AI operates globally and may transfer data across borders:

  • Data processed in compliance with applicable international data protection laws

  • Appropriate safeguards implemented for cross-border transfers (Standard Contractual Clauses, adequacy decisions)

  • Data stored primarily in [specify regions, e.g., US, EU] with GDPR and HIPAA compliance

10. Third-Party Links

Our website may contain links to third-party sites or services. We are not responsible for the privacy practices of these external sites. We encourage you to review their privacy policies before providing any personal information.

11. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect:

  • Changes in our data practices or services

  • New legal or regulatory requirements

  • Feedback from users and regulators

Notification of Changes:

  • Material changes will be communicated via email and prominently posted on our website

  • Continued use of our services after changes constitutes acceptance of the updated policy

  • Effective date of changes will be clearly indicated

12. Contact Us

For questions, concerns, or requests regarding this Privacy Policy or your data:

AEGIS AI Privacy Office
📧 Email: ilakeyan.thiagarajan@outlook.com
🔗 Twitter: https://x.com/Ilakeyan_t
🌐 Website: https://aegisai.framer.ai/

13. Regulatory Compliance

AEGIS AI complies with:

  • HIPAA (Health Insurance Portability and Accountability Act)

  • HITECH Act (Health Information Technology for Economic and Clinical Health)

  • GDPR (General Data Protection Regulation) for EU users

  • CCPA (California Consumer Privacy Act) for California residents

  • FDA regulations for Software as a Medical Device (SaMD)

  • Other applicable healthcare data protection laws

14. Your Trust Matters

At AEGIS AI, protecting your privacy and securing your health data is foundational to everything we do. We are committed to transparency, compliance, and continuous improvement of our privacy practices. If you have any concerns about how your information is handled, please don't hesitate to contact us.

AEGIS AI
Advanced Evidence-Guided Intelligence System
Transforming cardiovascular care through predictive AI

© 2025 AEGIS AI. All rights reserved.


Create a free website with Framer, the website builder loved by startups, designers and agencies.