Privacy Policy

Welcome to Avand Health ("Company," "we," "our," or "us"). We are committed to safeguarding your privacy and ensuring that your personal information is handled securely and in compliance with relevant laws, including the Australian Privacy Act 1988 (Cth), General Data Protection Regulation (GDPR), and Health Insurance Portability and Accountability Act (HIPAA) where applicable.

This Privacy Policy outlines how we collect, use, disclose, and protect your personal information when you access or use our mental health AI services.

a. Personal Information

When you create an account or use our platform, we may collect:

• Contact Details: Name, email address, phone number.
• Professional Information: Professional credentials, qualifications, registrations, training, and educational background (for clinicians).
• Payment Information: Credit card details, bank account information, and billing addresses for subscription services.

b. Health & Clinical Data

For clinicians utilizing our AI-assisted documentation tools, we process session transcripts and notes. All Protected Health Information (PHI) is encrypted and automatically redacted to remove identifiable patient details before processing.

c. Device and Usage Information

We collect data about how you interact with our platform, including:

• Device Information: Device ID, device type, operating system, browser type, IP address, and geolocation data.
• Usage Data: Log files, access timestamps, page views, and feature usage metrics to improve our AI models and user experience.

d. Additional Information

We may also collect information you provide through customer surveys, direct correspondence, or when you share information from other services or websites.

a. Directly from You:

We gather personal information through various methods:

• Directly from You: When you register on our platform, communicate with us, or interact with our services.
• From Third Parties: We may collect information from related companies, service providers, or public sources to verify your professional credentials or enhance our services.

We use your data to:

• Provide Services: Enable access to and use of our AI transcription and note-taking services.
• Enhance User Experience: Improve clinical workflow automation and platform functionality.
• Communicate: Send service updates, support messages, and information you request.
• Marketing: With your consent, send promotional messages and information that may interest you.
• Compliance: Adhere to legal and regulatory obligations.

We implement stringent measures to protect your information in accordance with global standards:

• Encryption: 256-bit encryption for data in transit and at rest
• Access Controls: Role-Based Access Control (RBAC) for protected data
• Regular Audits: Continuous security monitoring and infrastructure improvements
• Compliance: Adherence to HIPAA, GDPR regulations
• AI Safety: Manual review recommended for AI-generated content accuracy

We may share data with carefully vetted service providers for:

• Payment processing and subscription management
• Cloud hosting and infrastructure support
• AI model training (using de-identified data only)
• Customer support and analytics

All third parties are bound by strict confidentiality agreements and prohibited from data reuse.

We retain data only as long as necessary for:

• Service delivery and legal compliance
• Clinical record maintenance per jurisdictional requirements
• AI model improvement (de-identified data only)

Clinicians maintain full control over patient record deletion in compliance with their professional obligations.

When using our platform, you agree to:

• Maintain accurate credentials and security controls
• Obtain proper patient consents for data sharing
• Conduct final review of all AI-generated content
• Report any security incidents immediately
• Comply with all applicable healthcare regulations

As a global service, data may be processed in jurisdictions outside your home country. We ensure:

• Adequacy decisions under GDPR Article 45
• Standard Contractual Clauses for EU/UK transfers
• Equivalent protections for other international transfers

We may update this policy with 30 days' notice for material changes. You can:

• Review changes through platform notifications
• Terminate service with pro-rata refund if you do not agree to the new terms
• Continue using services to accept new terms

For inquiries, concerns, or support requests, contact us at: