top of page

Remedē Health Privacy Policy

 

Effective Date: 09/02/2025

Last Updated: 09/02/2025

 

Remedē Health (“we,” “us,” or “our”) is committed to protecting your privacy and ensuring the security of your personal and health-related information. This Privacy Policy explains how we collect, use, disclose, and safeguard your data in compliance with:

• General Data Protection Regulation (GDPR) – EU & UK

• California Consumer Privacy Act (CCPA) – USA

• Health Insurance Portability and Accountability Act (HIPAA) – USA

• Personal Information Protection and Electronic Documents Act (PIPEDA) – Canada

• Other applicable global privacy laws

By using our services, you agree to the practices outlined in this Privacy Policy.

 

1. DATA WE COLLECT

We collect and process different types of personal data depending on your interaction with our services.

 

1.1 Personal Information

• Name, address, email, phone number

• Date of birth, gender

• Payment details (processed securely by third-party providers)

1.2 Health-Related Information (Explicit Consent Required)

• Medical history, conditions, and treatment preferences

• Healthcare providers you interact with through our concierge services

• Lab results, prescriptions, and diagnostic reports (only if voluntarily provided)

 

1.3 AI and Automated Data Processing

• AI-driven recommendations for health optimization and concierge services

• Anonymized data used to improve our AI models

1.4 Technical Data

• IP address, device information, and browsing activity on our platform

• Cookies and tracking data for service improvement

1.5 Communication Records

• Messages, emails, or calls exchanged with our concierge team

• Notes on service preferences and interactions

We only collect health data with your explicit consent or when necessary to provide our services.

 

2. HOW WE USE YOUR DATA

We process your data for the following purposes:

 

2.1 Service Delivery

• Facilitating healthcare concierge services

• Connecting you with vetted healthcare providers

• Processing payments and managing subscriptions

2.2 AI and Automated Decision-Making Transparency

• Our AI-based recommendations use anonymized and encrypted data

• AI does not replace professional medical advice

• Users are encouraged to consult a healthcare provider before acting on AI insights

 

2.3 Legal & Compliance Obligations

• GDPR, HIPAA, CCPA, and other regulatory compliance

• Fraud prevention and security measures

• Responding to legal or regulatory requests

 

2.4 Research & Innovation (Aggregated, Anonymized Data Only)

• We may use de-identified, non-traceable data to improve healthcare AI models

• No personal or identifiable health data is shared without explicit consent

 

2.5 User-Controlled Data Portals

• You can manage, download, or delete your personal data via the User Data Portal

We never sell or misuse your data.

 

3. LEGAL BASIS FOR PROCESSING DATA (GDPR COMPLIANCE)

Under GDPR, we process your data based on:

• Consent: When you opt-in to use our services or receive marketing updates

• Contractual Necessity: When processing is required to provide concierge services

• Legal Obligations: Compliance with healthcare and financial regulations

• Legitimate Interest: Service improvements, fraud prevention, and internal analytics

You may withdraw consent at any time.

 

4. DATA SHARING & THIRD PARTIES

We may share your data with:

 

4.1 Healthcare Providers

• To coordinate appointments, treatments, and consultations

• Only with your explicit approval before sharing medical details

4.2 Payment Processors

• Secure third-party services handle financial transactions

 

4.3 Legal Authorities

• If required by law, regulatory bodies, or for fraud prevention

All third-party partners adhere to strict confidentiality and data security measures.

5. INTERNATIONAL DATA TRANSFERS

If you access our services from outside your home country, your data may be transferred internationally. We implement:

• Standard Contractual Clauses (SCCs) for EU data transfers

• Encryption and secure storage for cross-border data protection

 

6. YOUR RIGHTS UNDER GDPR, HIPAA & CCPA

 

6.1 GDPR Rights (EU & UK Residents)

You have the right to:

• Access your data (request a copy)

• Correct inaccuracies in your records

• Request data deletion (subject to legal retention requirements)

• Restrict processing or withdraw consent

• Data portability (receive your data in a structured format)

• Object to automated decision-making if AI impacts your healthcare choices

 

6.2 HIPAA Rights (USA – Healthcare Data Protections)

• You can request copies of your health records

• Your health data cannot be shared without your authorization

 

6.3 CCPA Rights (California Residents)

 

Under CCPA, you can:

• Request details on data collected and shared

• Request data deletion (where legally applicable)

• Opt-out of data sharing with third parties

To file a request, contact [Insert Contact Email]

We do not sell personal data.

 

7. DATA SECURITY MEASURES

We implement strict security protocols, including:

• End-to-end encryption for health data

• Multi-factor authentication (MFA) for account access

• Regular security audits to prevent breaches

• Access controls to restrict unauthorized data use

In case of a data breach, affected users will be notified within 72 hours (as per GDPR).

 

8. DATA RETENTION POLICY

We retain data only as long as necessary:

• Personal data: Stored for service continuity (deleted upon request)

• Health data: Retained based on legal medical record-keeping guidelines

• Payment data: Retained for compliance with financial regulations

You can request early deletion if not legally required for retention.

 

9. COOKIES & TRACKING TECHNOLOGIES

We use cookies for:

• Website analytics to improve user experience

• Personalized recommendations based on past interactions

• Security authentication to prevent unauthorized access

You can manage cookie preferences via browser settings.

 

10. THIRD-PARTY LINKS & SERVICES

Our website may include links to third-party health providers, wellness platforms, and external sites. We are not responsible for their privacy practices, and we encourage you to review their policies.

 

11. CHILDREN’S PRIVACY

Our services are not intended for individuals under 18 without parental consent. If we discover unauthorized data collection from minors, we will promptly delete it.

 

12. UPDATES TO THIS POLICY

We may revise this Privacy Policy periodically. We will notify users of significant changes via:

• Email notifications

• Platform updates

Continued use of our services after updates constitutes acceptance of new terms.

 

13. CONTACT US

For questions, data requests, or complaints, contact: hello@remedehealth.com

 

For GDPR inquiries, you may also contact our Data Protection Officer (DPO): https://www.gov.uk/data-protection/make-a-complaint

© 2025 REMEDE HEALTH

bottom of page