NobelMind Privacy Policy

NobelMind (“we,” “us,” or “our”) is committed to protecting your privacy and the confidentiality of patient data. This Privacy Policy explains how we collect, use, share, and protect information when you use our platform.

By accessing or using NobelMind’s services, you agree to this Privacy Policy.

1. Information We Collect

We collect the following types of information when you use our services:

a. Protected Health Information (PHI):

• Patient records (e.g., test results, treatment notes).

• Clinical documentation and histories shared through the platform.

b. User Information:

• Name, email address, and credentials of healthcare professionals.

• Account details and activity logs (e.g., login times).

c. Usage Data:

• Interactions with the platform (e.g., tools accessed, workflows run).

• Device information, including IP addresses and browser details.

We only collect information necessary to provide and improve our services.

2. How We Use Your Information

We use the collected data to:

• Deliver and optimize NobelMind’s AI-powered tools.

• Analyze workflows to improve decision support and operational efficiency.

• Summarize and retrieve relevant healthcare data.

• Generate reports and dashboards for performance monitoring.

• Ensure security, detect unauthorized activity, and comply with legal requirements.

AI Disclaimer:
Any insights generated by our AI tools are based on the data provided and are used only to support healthcare operations. NobelMind does not use PHI to train AI models.

3. How We Protect Your Information

Your data security is our top priority. NobelMind uses:

• Encryption: All data is encrypted at rest and in transit using industry-standard protocols.

• Access Controls: Multi-factor authentication (MFA) and least-privilege principles restrict access to authorized personnel only.

• Data Storage: All information is stored in HIPAA-compliant data centers located in the United States.

• Incident Response: We maintain a comprehensive incident response plan, including breach notifications within 24 hours of confirmation.

4. Data Retention and Deletion

• Patient Notes: Default retention is 30 days. You can request immediate deletion or adjust the retention period within the platform.

• User Accounts: Inactive accounts are automatically deactivated after 90 days.

We retain information only as long as necessary to deliver our services or comply with legal obligations.

5. Sharing Your Information

NobelMind does not sell or share your data with third parties for marketing purposes. We may share information only in the following cases:

• With Authorized Vendors: Vendors who assist us must sign HIPAA-compliant Business Associate Agreements (BAAs).

• For Legal Compliance: If required by law or regulation (e.g., court orders, public health authorities).

• For Healthcare Operations: To support workflows, data retrieval, and performance analytics.

All shared information is strictly controlled and encrypted.

6. Your Privacy Rights

As a user or patient, you have the right to:

• Access and Review your data.

• Request Corrections to inaccurate information.

• Delete or Restrict use of your PHI.

• Be Notified of data breaches within 24 hours.

To exercise any of these rights, contact us at support@nobelmind.com.

7. AI-Specific Practices

• AI tools process PHI to provide insights but do not retain or store patient data beyond its immediate use.

• PHI is never used to train our AI models.

• NobelMind ensures all AI practices comply with HIPAA standards.

8. Updates to This Policy

We may update this Privacy Policy from time to time. When we make changes, we will notify you by email or post a notice on our website. Continued use of NobelMind’s services after updates constitutes your acceptance of the revised Privacy Policy.

9. Contact Us

If you have any questions or concerns about this Privacy Policy or your data, please contact us:

NobelMind Support
Email: support@nobelmind.com
Website: www.nobelmind.com

Key Takeaways:

1. Your Data is Secure: Encrypted, stored in HIPAA-compliant US data centers.

2. AI Transparency: PHI is never used for AI training.

3. Your Rights: Access, correct, or delete your data anytime.