At Cureanix, we take your privacy seriously. This policy outlines how we collect, use, and protect your personal and patient information.
Healthcare Data Protection
Cureanix is fully compliant with HIPAA regulations and Bangladesh Data Protection Act. We implement industry-leading security measures to protect sensitive healthcare information.
Information We Collect
Personal Information: Name, email, phone number, and professional credentials
Usage Data: How you interact with our platform, features used, and prescription patterns
Patient Data: Information entered for prescription management (encrypted and secured)
Device Information: Browser type, IP address, and device identifiers for security
How We Use Your Information
To provide and maintain our prescription management services
To improve and personalize your experience with AI recommendations
To communicate with you about updates, support, and important notices
To ensure platform security and prevent fraudulent activities
To comply with legal obligations and healthcare regulations
Data Security
AES-256 encryption for all sensitive data at rest and in transit
HIPAA-compliant infrastructure and data handling procedures
Regular security audits and penetration testing
Multi-factor authentication and role-based access control
Automatic data backups with encrypted storage
SOC 2 Type II certified data centers
Your Rights
Access: Request a copy of your personal and patient data
Correction: Update or correct any inaccurate information
Deletion: Request deletion of your data (subject to legal requirements)
Portability: Export your data in a standard format
Opt-out: Unsubscribe from marketing communications at any time
Complaint: Lodge a complaint with relevant data protection authorities
Third-Party Services
We may use trusted third-party services for:
Cloud hosting (AWS, Google Cloud) with HIPAA-compliant configurations
Payment processing (encrypted and PCI DSS compliant)
Analytics (anonymized data only, no patient information)
Email communications (secure and encrypted)
Data Retention
We retain your data only as long as necessary to provide our services and comply with legal obligations. Patient records are retained according to healthcare regulations (minimum 7 years). You can request early deletion of your account, subject to legal retention requirements.
Contact Us About Privacy
If you have questions about this Privacy Policy or how we handle your data, please contact us: