Security and Data Privacy

Patient Data Security icon. Art by Somewan of Noun Project

We understand that data and confidentiality are top priority. It's the foundation of building trust with clients. Therefore, we created this page as a quick overview of how we protect you and your clients' privacy.
For detailed compliance documents to review, please go to our Trust Center.

You decide who sees your data

  • We will not share your data with any third parties without your explicit consent.
  • We do not share data with your patients, unless they explicitly request it.
  • We will not share your individual data with authorities, without your explicit consent, unless required by law.

Where data is processed

  • We do not transfer any audio over the internet. It stays on your device.
  • Redaction happens on your device, not in the cloud.
  • Redacted text is analyzed on our secure servers, unless you specify otherwise.
  • We do not use your data for training AI, unless you explicitly request for customization.

Type of data saved

  • We do not store any audio or video data from patient encounters.
  • We only store audio data if you (a clinician) records a short clip of their voice. This is used to accurately differentiate speakers in conversations.
  • You decide what information to capture for your documentation during setup and onboarding.
  • We save the values that would go directly into your documentation, and delete raw text data once documentation is generated and saved.
  • We remove identifying details as outlined by HIPAA (names, numbers, dates, etc.) before processing.

We follow compliance standards

  • We are HIPAA Compliant.
  • We are in the SOC 2 Type II audit observation period. Auditor's engagement letter available upon request.
  • We encrypt all our data storage systems.
  • We use reputable HIPAA compliant vendors (AWS, Google).
  • Only employees that need to keep our servers running smoothly have access to databases. This databases are encrypted, therefore not human-readable. Such an employee will only receive access after HIPAA compliance training and passing background checks.
  • We use monitoring systems to catch suspicious activity as soon as it starts.
  • We have a Data Protection Officer to review and enforce our data privacy policies.

If you change your mind

  • You can close your account at any time by sending a request to privacy-at-emotivohealth-dot-com. We will respond within 1 business day.
  • Closing an account will allow you to first download your data. You have 60 business days to do so, unless you request a longer or shorter timeline.
  • We delete your data after 60 business days, unless you request a longer or shorter timeline.
ProvidersHealth PlansWho we areArticles
ContactPrivacy PolicyTerms of ServiceSecurity FAQ
© Copyright  Theramie Incorporated. All Rights Reserved.