Privacy Policy

Patiently Chat is committed to protecting your privacy and ensuring the security of your personal data. This Privacy Policy outlines how we collect, use, store, and safeguard your information, particularly with respect to the use of our chatbot technology.
Last updated October 14th, 2024.
  • 1. Data Collection

    We collect personal and medical data to facilitate pre-consultation processes for patients.
    The data we collect includes:

    • Patient's personal details (e.g. name, age)
    • Medical history, symptoms and primary concerns
    • Responses from the chatbot interactions

    All data collected through Patiently Chat is used to support the medical consultation process and is only accessible by authorised healthcare professionals.

  • 2. Data Storage

    All patient data is securely stored on AWS (Amazon Web Services) servers located in Sydney, Australia, and managed through MongoDB Atlas. We ensure that AWS complies with high-level security standards, including encryption at rest, to protect sensitive patient information. Atlas encrypts all cluster storage and snapshot volumes at rest by default.

  • 3. Data Processing

    The data processing application and AI components that interact with patient data are hosted on Microsoft Azure servers, also located in Sydney, Australia. This allows for efficient and secure processing of chatbot responses, summarization of patient information, and real-time updates for medical practitioners.

  • 4. Data Security

    Patiently Chat prioritises the security of your data and employs the following measures:

    • HTTPS Encryption: All network traffic between users, the chatbot, and our servers is encrypted using HTTPS, ensuring that data transmission is secure and cannot be intercepted.
    • Cloudflare Protection: We use Cloudflare Tunnel for DDoS (Distributed Denial-of-Service) protection, adding an extra layer of security to prevent unauthorised access or attacks.
    • Secure Access Control: Only authorised users, such as practitioners and Patiently Chat administrators, can access patient data, which is protected through role-based access controls.
    • 5. HIPAA and TGA Compliance

      We have explored compliance with TGA (Therapeutic Goods Administration) and are currently exploring compliance with HIPAA (Health Insurance Portability and Accountability Act) standards to ensure that our platform adheres to the strictest privacy and security regulations for handling health-related data:

      • HIPAA Compliance: While not yet fully implemented, we are working towards ensuring that all data handling processes comply with HIPAA regulations, which are focused on protecting sensitive patient information in the healthcare sector.
      • TGA Compliance: Patiently Chat has obtained confirmation from the TGA that our software does not require approval by their standards.
      • As some regulatory standards are being actively reviewed and pursued, we will update our compliance status in future policy revisions.

    • 6. Data Retention

      We retain patient data for as long as necessary to support the medical consultation process and in accordance with applicable laws and regulations. Once patient data is no longer needed or upon request, we will securely delete or anonymize the information. Upon request, we also pertain to a 7-day auto-delete policy.

    • 7. User Rights

      You have the right to:

      • Access your data: You may request access to your personal or medical information at any time.
      • Correction: If any data is incorrect, you may request corrections.
      • Data deletion: You may request the deletion of your personal data, subject to applicable laws.
      • Data portability: We will provide your data in a structured, commonly used format if requested.
    • 8. Third-Party Access

      Patiently Chat does not share patient data with third parties unless required by law. We take all reasonable steps to ensure that our service providers and partners (such as AWS, Azure, and Cloudflare) comply with data protection laws.

    • 9. Updates to this Privacy Policy

      We may update this Privacy Policy to reflect changes in our practices, regulatory requirements, or technological advances. All updates will be published on our platform, and we will notify users of significant changes.

    • 10. Contact Us

      If you have any questions or concerns about this Privacy Policy or how we handle your data, please contact my number at +61457482887 (Euan Lim, Co-Founder of Patiently).