← Back to Home

Privacy Policy

Last Updated: March 25, 2026

1. Introduction

SanosMD ("we," "our," or "us") is committed to protecting the privacy and security of your personal and health information. This Privacy Policy describes how we collect, use, disclose, and safeguard information when you use our HIPAA-compliant telemedicine platform and AI-powered healthcare automation services.

2. Information We Collect

2.1 Protected Health Information (PHI)

As a healthcare service provider, we collect and process Protected Health Information as defined by HIPAA, including:

  • Patient demographics and contact information
  • Medical history and clinical documentation
  • Treatment plans and physician notes
  • Billing and insurance information
  • Telemedicine session recordings and transcripts

2.2 Technical Information

  • IP addresses and device identifiers
  • Browser type and operating system
  • Usage data and analytics
  • Log files and system performance data

3. How We Use Your Information

We use the collected information for the following purposes:

  • Healthcare Services: To provide telemedicine consultations and automated patient documentation
  • Billing & Claims: To process automated billing and insurance claims
  • AI Processing: To improve our AI-powered automation tools for patient care
  • Compliance: To meet legal and regulatory requirements including HIPAA
  • Service Improvement: To enhance our platform and user experience

4. HIPAA Compliance

SanosMD is fully HIPAA compliant. We maintain comprehensive administrative, physical, and technical safeguards to protect PHI in accordance with HIPAA Privacy and Security Rules:

  • End-to-end encryption for all data transmission
  • Encrypted data storage at rest
  • Access controls and authentication protocols
  • Regular security audits and risk assessments
  • Business Associate Agreements (BAAs) with all third-party vendors
  • Comprehensive staff training on HIPAA regulations

5. Data Sharing and Disclosure

We may share your information only in the following circumstances:

  • Healthcare Providers: With authorized healthcare professionals involved in your care
  • Business Associates: With HIPAA-compliant service providers under BAAs
  • Legal Requirements: When required by law or to protect rights and safety
  • With Your Consent: When you explicitly authorize information sharing

We never sell or rent your personal or health information to third parties.

6. Data Security

We implement industry-leading security measures including:

  • 256-bit AES encryption for data at rest
  • TLS 1.3 encryption for data in transit
  • Multi-factor authentication
  • Regular security penetration testing
  • 24/7 security monitoring and incident response
  • Secure data centers with physical access controls

7. Your Privacy Rights

Under HIPAA, you have the right to:

  • Access your Protected Health Information
  • Request corrections to your health records
  • Receive an accounting of PHI disclosures
  • Request restrictions on use and disclosure
  • Request confidential communications
  • Receive a copy of this Privacy Policy
  • File a complaint with us or the HHS Office for Civil Rights

8. Data Retention

We retain health information for the periods required by applicable federal and state laws, typically a minimum of six years from the date of creation or last use. Technical and usage data is retained only as long as necessary for legitimate business purposes.

9. AI and Automated Processing

Our AI-powered automation tools process patient information to generate clinical documentation and billing codes. All AI processing is conducted in secure, HIPAA-compliant environments. Healthcare providers retain final authority and responsibility for all clinical decisions.

10. Children's Privacy

Our services are not directed to individuals under 18 years of age. We do not knowingly collect personal information from minors without appropriate parental or guardian consent in accordance with applicable laws.

11. Changes to This Policy

We may update this Privacy Policy periodically. We will notify you of material changes by posting the updated policy on our website and updating the "Last Updated" date. Continued use of our services after changes constitutes acceptance of the updated policy.

12. Contact Us

For questions about this Privacy Policy or to exercise your privacy rights, contact us at:

SanosMD Privacy Officer
Email: support@sanosmd.com
Phone: [Company Phone Number]
Address: [Company Address]

Return to Home|Terms of Use|Support