Privacy Policy

By accessing or using our Services, you acknowledge that you have read and understood this Privacy Policy and agree to be bound by its terms.

At Vitora, we are committed to protecting the privacy and security of our users' sensitive patient data. We understand the importance of maintaining the confidentiality and integrity of personal health information and are dedicated to upholding the highest standards of data protection. This Privacy Policy outlines how we collect, use, disclose, and safeguard your information when you use our software and services. Please read this privacy policy carefully to understand our practices regarding your personal data.

  1. Information We Collect 

    • 1.1. Personal Information: We may collect personal information, including but not limited to: patient name, date of birth, gender, and contact information (address, phone number, email), medical history, diagnoses, treatment plans, and prescriptions, health insurance information, including provider name, policy number, and coverage details, demographic information, such as age, race, ethnicity, and preferred language, other information necessary for providing our services, such as medical device usage data 

    • 1.2. Usage Information: We may automatically collect certain information about how you use our software and services, including: IP address, browser type, device information, and operating system, pages visited, links clicked, and actions taken within our software, dates and times of your visits and interactions with our software, other usage statistics and analytics data.

  2. How We Use Your Information

    We use the collected information to:

    • Provide, maintain, and improve our software and services

    • Process and manage your requests, transactions, and appointments

    • Communicate with you about your account, provide customer support, and respond to your inquiries

    • Analyze usage trends, preferences, and patterns to enhance user experience and develop new features

    • Conduct research and analysis to improve healthcare outcomes and advance medical knowledge, in compliance with applicable laws and regulations

    • Comply with legal obligations, enforce our rights, and protect against unauthorized access or misuse of our software and services

  3. Information Sharing and Disclosure

    We do not sell, trade, or otherwise transfer your personal information to third parties without your explicit consent, except as described in this Privacy Policy:

    • We may share your information with trusted third parties who assist us in operating our software, conducting our business, or providing services to you, such as hosting providers, payment processors, and analytics providers. These third parties are bound by strict confidentiality obligations and are only permitted to use your information as necessary to provide services to us or to you.

    • We may disclose your information if required to do so by law, subpoena, or other legal processes, or if we believe that such action is necessary to comply with the law, protect our rights, or defend against legal claims.

    • In the event of a merger, acquisition, or sale of all or a portion of our assets, your information may be transferred to the acquiring entity. We will notify you via email and/or prominent notice on our website of any change in ownership or use of your personal information, as well as any choices you may have regarding your personal information.

  4. Data Security

    We implement a variety of security measures to maintain the safety of your personal information:

    • All data is encrypted in transit using secure SSL/TLS protocols and at rest using industry-standard AES-256 encryption.

    • We perform regular security audits, vulnerability assessments, and penetration testing to identify and address potential risks.

    • Access to personal information is strictly limited to authorized personnel who need to know that information to provide services or support. All employees and contractors are bound by confidentiality agreements and subject to disciplinary action, up to and including termination, for any violation of privacy policies.

    • We maintain detailed access logs and audit trails to monitor and detect any unauthorized access attempts or data breaches.

    • In the event of a confirmed data breach involving personal information, we will promptly notify affected individuals and relevant authorities as required by applicable laws and regulations.

  5. Your Rights Subject to applicable laws, you have certain rights regarding your personal information:

    • Right to Access: You have the right to request a copy of the personal information we hold about you. We will provide this information free of charge, unless the request is manifestly unfounded, excessive, or repetitive.

    • Right to Rectification: You have the right to request that we correct any inaccurate or incomplete personal information about you.

    • Right to Erasure: You have the right to request that we delete your personal information, subject to certain exceptions, such as when the information is necessary to provide services to you or to comply with legal obligations.

    • Right to Restrict Processing: You have the right to request that we restrict the processing of your personal information under certain circumstances, such as when you contest the accuracy of the information or object to its processing.

    • Right to Data Portability: You have the right to receive your personal information in a structured, commonly used, and machine-readable format and to transmit that information to another controller, where technically feasible.

    • Right to Object: You have the right to object to the processing of your personal information for direct marketing purposes or when our legitimate interests are overridden by your rights and freedoms.

    • Right to Withdraw Consent: Where we rely on your consent to process your personal information, you have the right to withdraw that consent at any time. Withdrawing your consent will not affect the lawfulness of any processing carried out before you withdraw your consent.

      To exercise any of these rights, please contact us at support@vitora.care. We will respond to your request within a reasonable timeframe and may require additional information to verify your identity before fulfilling your request.

  6. Data Retention

    • We will retain your personal information only for as long as necessary to fulfill the purposes for which it was collected, including for the purposes of satisfying any legal, accounting, or reporting requirements. When determining the appropriate retention period, we consider factors such as the nature and sensitivity of the information, the potential risk of harm from unauthorized use or disclosure, and the purposes for which we process your personal information.

    • In some circumstances, we may anonymize your personal information (so that it can no longer be associated with you) for research or statistical purposes, in which case we may use this information indefinitely without further notice to you.

  7. Children's Privacy

    • Our software and services are not intended for use by individuals under the age of 18. We do not knowingly collect personal information from children. If you are a parent or guardian and believe that your child has provided us with personal information, please contact us immediately. If we become aware that we have collected personal information from a child without parental consent, we will take steps to remove that information from our servers.

  8. International Data Transfers

    • Your personal information may be transferred to, stored, and processed in countries other than the one in which it was provided, including the United States. When we transfer your information to other countries, we will protect that information as described in this Privacy Policy and in accordance with applicable laws. We rely on standard contractual clauses, binding corporate rules, and other legal mechanisms to ensure adequate protection for your personal information when it is transferred internationally.

  9. Third-Party Links and Services

    • Our software and services may contain links to third-party websites, products, or services. We are not responsible for the privacy practices or content of those third parties. The collection, use, and disclosure of your information will be subject to the privacy policies of the third party, not this Privacy Policy. We encourage you to read the privacy policies of any third parties you interact with.

  10. Changes to This Privacy Policy

    • We may update our Privacy Policy from time to time to reflect changes in our practices, technologies, or legal requirements. We will notify you of any material changes by posting the updated Privacy Policy on this page and updating the "Last Updated" date at the bottom of the policy. We may also provide additional notice, such as via email or in-software notifications, for significant changes. Your continued use of our software and services after the posting of the updated Privacy Policy constitutes your acceptance of the changes.

      If you have any questions, concerns, or requests regarding this Privacy Policy, please contact us at: support@vitora.care

      We are committed to working with you to resolve any concerns you may have about your privacy or the handling of sensitive information.

      Last Updated: April 16th, 2024