Privacy Policy

How we protect and handle your data

Last Updated: January 25, 2025 | Effective Date: January 1, 2025

Quick Navigation

Overview
Information We Collect
How We Use Information
Information Sharing
Data Security
Your Rights
International Transfers
Policy Updates

Overview

At SynThera Health ("SynThera," "we," "us," or "our"), we are committed to protecting the privacy and security of your personal information. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you use our AI-powered clinical intelligence platform and related services.

We comply with all applicable data protection laws, including HIPAA (Health Insurance Portability and Accountability Act), GDPR (General Data Protection Regulation), and other relevant healthcare privacy regulations.

Information We Collect

Account Information

  • Name, email address, and professional credentials
  • Healthcare organization affiliation and role
  • Medical specialty and license information

Usage Data

  • Platform interaction and feature usage patterns
  • Clinical queries and AI model interactions (anonymized)
  • Performance metrics and error logs

Protected Health Information (PHI)

Important: We process PHI only as a Business Associate under HIPAA. All PHI is encrypted, de-identified where possible, and handled according to strict security protocols. We never sell or share PHI for marketing purposes.

How We Use Information

Primary Uses

  • • Providing AI-powered clinical decision support
  • • Generating clinical documentation and insights
  • • Improving diagnostic accuracy and patient outcomes
  • • Ensuring platform security and preventing fraud

Service Improvements

  • • Training and improving AI models (using de-identified data)
  • • Developing new features based on user needs
  • • Conducting healthcare research (with consent)
  • • Providing customer support and training

Information Sharing

We share information only in the following circumstances:

With Your Consent

When you explicitly authorize us to share information with specific third parties.

Service Providers

With trusted partners who help us operate our platform (under strict confidentiality agreements).

Legal Requirements

When required by law, court order, or governmental request.

De-identified Data

Aggregated, anonymized data for research and healthcare improvements.

Data Security

Technical Safeguards

  • • 256-bit AES encryption at rest
  • • TLS 1.3 encryption in transit
  • • Multi-factor authentication
  • • Regular security audits

Compliance Standards

  • • HIPAA compliant infrastructure
  • • SOC 2 Type II certified
  • • ISO 27001 standards
  • • Regular penetration testing

Your Rights

You have the following rights regarding your personal information:

Access your personal data and receive copies
Correct inaccurate or incomplete information
Request deletion of your data (subject to legal obligations)
Object to certain processing activities
Port your data to another service
Withdraw consent at any time
File a complaint with supervisory authorities

Contact Our Privacy Team

For questions about this Privacy Policy or to exercise your rights:

Email:privacy@synthera.health

Mail:SynThera Health, Privacy Team, 100 Healthcare Way, Boston, MA 02115

Phone:1-800-SYNTHERA (1-800-796-8437)

Terms of ServiceSecurity OverviewComplianceContact Us