Privacy Policy

Effective date: [INSERT DATE]

This Privacy Policy explains how Datasolids, Inc. (“Datasolids,” “we,” “us”) collects, uses, protects, and shares information when you use the Datasolids application, website, and services (the “Service”). Your health information belongs to you; our role is to help you collect, organize, and control it.

1. Information We Collect

• Account information: your name, email address, phone number, and authentication details when you create an account.
• Health information you connect: when you authorize a connection to a healthcare provider, we retrieve a read-only copy of the records you approve (for example, demographics, allergies, conditions, medications, immunizations, encounters, lab results, vital signs, procedures, and imaging reports) and store them in your private pod.
• Information you provide: profile details and any records or files you choose to upload.
• Technical information: device and usage data needed to operate and secure the Service (for example, app version, IP address, and log/security events).

2. How We Use Your Information

We use your information to: provide and maintain your health pod; retrieve records from sources you connect; secure your account and detect abuse; respond to your support requests; and comply with legal obligations. We act on your behalf and at your direction.

3. How We Share Information

We share your information only:

• At your direction: when you grant a clinician, organization, or research program access, we share exactly what you authorize, for the time period you set, and you can revoke it at any time.
• With service providers: vetted vendors (such as cloud hosting and email delivery) who process data on our behalf under contractual confidentiality and security obligations, including Business Associate Agreements where applicable.
• For legal reasons: when required by law or to protect the rights, safety, and security of users and the Service.

4. Your Control and Choices

You can: view and export your data; correct your profile information; disconnect any connected provider; revoke access you’ve granted to others; and delete your account and associated data. To exercise these rights, use the in-app controls or contact us at [privacy@datasolids.com].

5. Security

We protect your information using industry-standard safeguards, including encryption of sensitive health identifiers at rest, encryption in transit, access controls, multi-factor authentication, and audit logging. No system is perfectly secure, but protecting your health data is central to how we build the Service.

6. Data Retention

We retain your information for as long as your account is active or as needed to provide the Service. When you delete data or your account, we delete or de-identify it within a reasonable period, except where retention is required by law.

7. Third-Party Sources

When you connect a provider (such as an Epic MyChart account), you authenticate on that provider’s own system. We never receive your provider password. Those providers control the source data and operate under their own privacy practices.

8. Children’s Privacy

The Service is intended for individuals 18 and older. We do not knowingly collect information from children under 18 except where an authorized adult connects a minor’s record on their behalf in accordance with applicable law.

9. Changes to This Policy

We may update this Policy from time to time. If we make material changes, we will notify you (for example, by email or in the Service) and update the effective date above.

10. Contact Us

Questions about your privacy? Contact us at:
Datasolids, Inc.
[INSERT MAILING ADDRESS]
Email: [privacy@datasolids.com]