Legal
Privacy policy
Last updated:
This Privacy Policy describes how HEALQ ("we", "us") handles personal information when you use our websites, mobile experiences, and cloud services. It applies to visitors, clinic staff, and—where relevant—patients who interact with tools we provide on behalf of a clinic.
1. Who we are
HEALQ provides software used by healthcare organizations. The data controller for information processed through our marketing site and platform may be HEALQ and/or the clinic that invited you, depending on context. For patient-facing features operated on behalf of a clinic, that clinic is often the controller for patient data; we act as a processor under their instructions where applicable.
2. Information we collect
2.1 You provide
- Account and profile details (name, email, phone, role)
- Clinic and billing information
- Content you enter into the product (e.g. schedules, notes, billing, messages)
- Support communications
2.2 Automatically
- Device, browser, and approximate location (from IP)
- Usage logs, diagnostics, and security signals
- Cookies and similar technologies — see our Cookie Policy
3. How we use information
We use personal information to:
- Provide, secure, and improve the services
- Authenticate users and prevent fraud
- Communicate about the product, updates, and support
- Meet legal and regulatory obligations
- Analyze aggregated or de-identified usage trends
4. Health and sensitive information
Where the product is used to process health information, we implement appropriate technical and organizational measures and support customer compliance programs (such as HIPAA-aligned controls where applicable). You should only enter the minimum information necessary for your workflows.
5. Sharing
We may share information with:
- Service providers who assist us (hosting, email, analytics, support) under strict agreements
- Professional advisers when required
- Authorities when required by law or to protect rights and safety
- Business transfers (e.g. merger) with notice as required
We do not sell personal information as traditionally defined.
6. International transfers
We may process data in countries where we or our providers operate. Where required, we use appropriate safeguards (such as standard contractual clauses) for cross-border transfers.
7. Retention
We retain information for as long as needed to provide the services, comply with law, resolve disputes, and enforce agreements. Retention periods may depend on your clinic's settings and regulatory requirements.
8. Security
We use administrative, technical, and physical safeguards designed to protect information. No method of transmission over the Internet is 100% secure; we encourage strong passwords and role-based access in your organization.
9. Your rights
Depending on your location, you may have rights to access, correct, delete, restrict, or object to certain processing, and to data portability. Patients should often contact their clinic first for medical records requests. To exercise rights with respect to information HEALQ holds as a controller, email privacy@healq.com.
10. Children
Our services are not directed to children for independent use. Clinics are responsible for lawful processing relating to minors under their care.
11. Changes
We may update this Privacy Policy from time to time. We will post the new version and revise the "Last updated" date. Material changes may be communicated by email or in-product notice where appropriate.
12. Contact
Privacy questions: privacy@healq.com · Contact form