Privacy Policy

1. Introduction

Welcome to BrainyMed. At BrainyMed, we are committed to protecting the privacy and security of our users, including healthcare providers, administrators, and patients. This Privacy Policy explains how we collect, use, disclose, and safeguard your information when you visit our website (https://brainymed.com) and use our integrated Complete Care Suite, including BlinkScribe, MedTrack, BrainyAssist, BrainyDesk, and related applications.

By accessing or using our services, you signify that you have read, understood, and agree to our collection, storage, use, and disclosure of your personal information as described in this Privacy Policy.

2. HIPAA Compliance & Protected Health Information (PHI)

As a provider of healthcare technology solutions, BrainyMed acts as a Business Associate to healthcare providers (Covered Entities) under the Health Insurance Portability and Accountability Act (HIPAA). When we process Protected Health Information (PHI) on your behalf, we do so strictly in accordance with our Business Associate Agreement (BAA) and applicable federal and state laws.

AI Training Notice: BrainyMed enforces strict data segregation. We do not use your organization's PHI or patient data to train our foundational or publicly available AI models.

3. Information We Collect

A. Information You Provide to Us

• Account Data: Name, email address, phone number, professional title, and organization details when registering or requesting contact.
• Clinical and Operational Data: Patient demographics, scheduling data, medical documentation, and audio recordings (via BlinkScribe), governed by our BAA.
• Communications: Information provided when contacting our support or sales teams.

B. Information Collected Automatically

• Usage Data: Information on how you interact with our platforms (e.g., login times, feature utilization, and system logs).
• Device Data: IP address, browser type, operating system, and hardware models.

4. How We Use Your Information

We use the collected information for the following business purposes:

• To provide, operate, and maintain the BrainyMed platform and its specific modules.
• To process and transcribe medical documentation (BlinkScribe) securely.
• To execute integrations with third-party EHR/PM systems via FHIR and HL7 protocols.
• To send administrative notifications, security alerts, and support messages.
• To improve and optimize our user interface and software architecture.

5. Sharing and Disclosure

BrainyMed does not sell your personal data. We may share information in the following circumstances:

• Service Providers: With trusted U.S.-based cloud infrastructure providers (e.g., secure hosting environments) that are bound by BAAs and strict confidentiality obligations.
• EHR Integrations: With your authorized Electronic Health Record (EHR) systems as requested and configured by your practice.
• Legal Requirements: If required to do so by law or in response to valid requests by public authorities (e.g., a court or government agency).

6. Data Security

We implement robust, industry-standard administrative, technical, and physical safeguards to protect your personal information and PHI. This includes end-to-end encryption (in transit and at rest), strict access controls, principle of least privilege, and continuous audit logging.

7. Data Retention

We retain personal information and PHI only for as long as necessary to fulfill the purposes outlined in this policy or our governing BAA. Upon termination of our services, you may request a structured data export, after which we will securely delete or anonymize your data per HIPAA standards.

8. Your Privacy Rights

Depending on your jurisdiction, you may have the right to access, correct, update, or request deletion of your personal data. If you are a patient looking to exercise rights over your medical records, please contact your healthcare provider directly, as they are the authorized Data Controller/Covered Entity.

9. Changes to This Privacy Policy

We may update this Privacy Policy periodically to reflect changes in our practices or regulatory requirements. We will notify you of any material changes by updating the "Effective Date" at the top of this page and, where appropriate, via email or platform notification.

10. Contact Us

If you have any questions, concerns, or requests regarding this Privacy Policy or our data practices, please contact our privacy compliance team at:

Email: admin@brainymed.com
Website: https://brainymed.com