DrMedGuide — AIP Innovations Inc.
Effective Date: __________

1. Overview

DrMedGuide is designed to operate in a high-privacy, low-retention environment.
We respect HIPAA, PHIPA, PIPEDA, and general privacy principles.

2. Information We Collect

We collect:

• Account information (email, login metadata)
  
  
• Device/browser information
  
  
• Usage analytics (non-identifiable)
  
  

We do NOT collect or store:

• Patient names
  
  
• PHI or identifiers
  
  
• Clinical content entered into the tool
  
  

All clinical input/output is deleted within seconds after generation.

3. How We Use Information

We use limited information for:

• User authentication
  
  
• Service functionality
  
  
• Fraud and abuse prevention
  
  
• Compliance and security logging
  
  

We do not sell or share user data.

4. Data Retention

Clinical inputs/output are not retained.
User account data is retained only as required for service operation.

5. HIPAA & PHIPA Compliance

If clinicians enter PHI:

• They are responsible for obtaining authorization
  
  
• Data is processed transiently
  
  
• No PHI is stored or retrievable
  
  

DrMedGuide functions as a Business Associate–like service under HIPAA, though no BAA is required due to no PHI retention.

6. Security Safeguards

Includes:

• Encryption in transit
  
  
• Access control
  
  
• Secured servers
  
  
• Audit logging
  
  

7. International Transfers

Your data may be processed in the U.S. or Canada.
Use of the Platform constitutes consent.

8. User Rights

Users may request:

• Deletion of their account
  
  
• Information correction
  
  
• Restriction of use
  
  

9. Contact

support@yourdomain.com